Vulnerabilities > Pyconuk > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-08-28 | CVE-2018-14572 | Deserialization of Untrusted Data vulnerability in Pyconuk Conference-Scheduler-Cli In conference-scheduler-cli, a pickle.load call on imported data allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call. | 6.8 |