NRDAX-T0348 - Unsafe Deserialization RCE
supply-chain · active · first seen 2022-01-01
provenance: Catalogued from public disclosure; not yet reproduced
mechanism
Unsafe Deserialization RCE
instances (0)
| chain | primitive | fidelity | origin | reproducer (bundle) | source |
|---|
references
cve: CVE-2022-42003
cve: CVE-2025-58367
ghsa: GHSA-rpj2-4hq8-938g
vendor-advisory: GHPR-near-nearcore-15709
related (supply-chain)
NRDAX-T0022 - Client Library Supply Chain Compromise active NRDAX-T0034 - Container Escape via Dependency active NRDAX-T0048 - Dependency Use-After-Free Corruption active NRDAX-T0098 - Guest Module Memory Corruption active NRDAX-T0140 - Log Injection RCE active NRDAX-T0170 - Network-Triggered Runtime DoS active NRDAX-T0296 - Template Injection RCE active NRDAX-T0337 - Unexploitable Dependency Vulnerability active
cite
https://nrdax.com/techniques/NRDAX-T0348
plain
NRDAX Registry. Technique NRDAX-T0348.
bibtex
@misc{nrdax_NRDAX_T0348,
title = {Unsafe Deserialization RCE (NRDAX-T0348)},
howpublished = {NRDAX Registry},
url = {https://nrdax.com/techniques/NRDAX-T0348},
} json (csl)
{
"id": "nrdax-NRDAX-T0348",
"type": "dataset",
"title": "Unsafe Deserialization RCE (NRDAX-T0348)",
"URL": "https://nrdax.com/techniques/NRDAX-T0348",
"publisher": "NRDAX Registry"
}