Security Advisory

CVE-2024-27758

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-12 00:00:00

Last updated 2024-08-02 00:34:52

Assigner mitre

State PUBLISHED

Description

In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __array__ for a client-provided netref (e.g., np.array(client_netref)), a remote attacker can craft a class that results in remote code execution.

← Browse all CVEs View on cve.org ↗