CVE-2024-0959 | StanfordVL GibsonEnv 0.3.1 pposgd_fuse.py cloudpickle.load deserialization

CVE-2024-0959 | StanfordVL GibsonEnv 0.3.1 pposgd_fuse.py cloudpickle.load deserialization

A vulnerability was found in StanfordVL GibsonEnv 0.3.1. It has been classified as critical. Affected is the function cloudpickle.load of the file gibson\utils\pposgd_fuse.py. The manipulation leads to deserialization. This vulnerability is traded as CVE-2024-0959. It is possible to launch the attack remotely. Furthermore, there is an exploit available.