Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
giantspatula SewKinect Endpoint calculate pickle.loads deserialization
Vulnerability Description
A vulnerability has been found in giantspatula SewKinect up to 7fd963ceb3385af3706af02b8a128a13399dffb1. This affects the function pickle.loads of the file /calculate of the component Endpoint. Such manipulation of the argument body_parts/point_cloud leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
可信数据的反序列化
Vulnerability Title
SewKinect 代码问题漏洞
Vulnerability Description
SewKinect是Cass Malloy个人开发者的一个纸样绘制软件。 SewKinect存在代码问题漏洞,该漏洞源于对文件/calculate中参数body_parts/point_cloud的错误操作,可能导致反序列化攻击。
CVSS Information
N/A
Vulnerability Type
N/A