The Hacker News - New R Programming Vulnerability Exposes Projects to Supply Chain Attacks
A security vulnerability has been discovered in the R programming language that could be exploited by a threat actor to create a malicious RDS (R Data Serialization) file such that it results in code execution when loaded and referenced. The flaw, assigned the CVE identifier CVE-2024-27322, "involves the use of promise objects and lazy evaluation in R," AI application security
from The Hacker News https://thehackernews.com/2024/04/new-r-programming-vulnerability-exposes.html
from The Hacker News https://thehackernews.com/2024/04/new-r-programming-vulnerability-exposes.html
Comments
Post a Comment