** DISPUTED ** Manuskript through 0.12.0 allows remote attackers to execute arbitrary code via a crafted settings.pickle file in a project file, because there is insecure deserialization via the pickle.load() function in settings.py. NOTE: the vendor's position is that the product is not intended for opening an untrusted project file.
References
| Link | Resource |
|---|---|
| https://github.com/olivierkes/manuskript/issues/891 | Third Party Advisory |
| https://www.pizzapower.me/2021/06/20/arbitrary-code-execution-in-manuskript-0-12/ | Exploit Third Party Advisory |
| https://github.com/olivierkes/manuskript/issues/891 | Third Party Advisory |
| https://www.pizzapower.me/2021/06/20/arbitrary-code-execution-in-manuskript-0-12/ | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 06:12
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/olivierkes/manuskript/issues/891 - Third Party Advisory | |
| References | () https://www.pizzapower.me/2021/06/20/arbitrary-code-execution-in-manuskript-0-12/ - Exploit, Third Party Advisory |
25 Jun 2021, 12:59
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
| CWE | CWE-502 | |
| References | (MISC) https://www.pizzapower.me/2021/06/20/arbitrary-code-execution-in-manuskript-0-12/ - Exploit, Third Party Advisory | |
| References | (MISC) https://github.com/olivierkes/manuskript/issues/891 - Third Party Advisory | |
| CPE | cpe:2.3:a:theologeek:manuskript:*:*:*:*:*:*:*:* |
21 Jun 2021, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-06-21 23:15
Updated : 2024-11-21 06:12
NVD link : CVE-2021-35196
Mitre link : CVE-2021-35196
CVE.ORG link : CVE-2021-35196
JSON object : View
Products Affected
theologeek
- manuskript
CWE
CWE-502
Deserialization of Untrusted Data