GHSA-6p55-qr3j-mpgq
Suggest an improvement- Source
- https://github.com/advisories/GHSA-6p55-qr3j-mpgq
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/11/GHSA-6p55-qr3j-mpgq/GHSA-6p55-qr3j-mpgq.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-6p55-qr3j-mpgq
- Aliases
-
- CVE-2024-48050
- Published
- 2024-11-05T00:31:28Z
- Modified
- 2024-11-07T17:22:24.155924Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- 8.9 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P CVSS Calculator
- Summary
- AgentScope uses `eval`
- Details
-
In agentscope <=v0.0.4, the file
agentscope\web\workstation\workflow_utils.pyhas the functionis_callable_expression. Within this function, the lineresult = eval(s)poses a security risk as it can directly execute user-provided commands. - Database specific
{ "nvd_published_at": "2024-11-04T23:15:04Z", "cwe_ids": [ "CWE-94", "CWE-95" ], "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2024-11-05T16:10:09Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2024-48050
- https://gist.github.com/AfterSnows/0ad9d233a9d2a5b7e6e5273e2e23508d
- https://github.com/modelscope/agentscope
- https://github.com/modelscope/agentscope/blob/main/src/agentscope/web/workstation/workflow_utils.py#L11
- https://rumbling-slice-eb0.notion.site/Unauthenticated-Remote-Code-Execution-via-The-use-of-eval-in-is_callable_expression-and-sanitize_nod-cd4ea6c576da4e0b965ef596855c298d
Affected packages
PyPI / agentscope
Package
- Name
- agentscope
- View open source insights on deps.dev
- Purl
- pkg:pypi/agentscope