Skip to main content

Python Jsonpickle

1 CVEs product

Monthly

CVE-2021-47952 CRITICAL POC Act Now

python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Python RCE Deserialization Code Injection Python Jsonpickle
NVD Exploit-DB GitHub VulDB
CVSS 4.0
9.3
EPSS
0.3%
EPSS 0% CVSS 9.3
CRITICAL POC Act Now

python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Python RCE Deserialization +2
NVD Exploit-DB GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy