描述
NASA Kodiak version v1.0 contains a CWE-502 vulnerability in Kodiak library's data processing function that can result in remote code execution. This attack appear to be exploitable via Victim opens an untrusted file for optimization using Kodiak library.
AI分析AI驱动
受影响产品
nasakodiak
1.0
参考资料
- https://github.com/nasa/Kodiak/issues/5Issue TrackingThird Party Advisory
- https://github.com/nasa/Kodiak/issues/5Issue TrackingThird Party Advisory