{"id":"CVE-2024-27758","details":"In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __array__ for a client-provided netref (e.g., np.array(client_netref)), a remote attacker can craft a class that results in remote code execution.","aliases":["GHSA-h5cg-53g7-gqjw","PYSEC-2024-44"],"modified":"2026-03-13T07:53:48.891302Z","published":"2024-03-12T16:15:08.600Z","related":["GHSA-h5cg-53g7-gqjw","openSUSE-SU-2024:0082-1","openSUSE-SU-2024:13768-1"],"references":[{"type":"WEB","url":"https://gist.github.com/renbou/957f70d27470982994f12a1d70153d09"},{"type":"ADVISORY","url":"https://github.com/tomerfiliba-org/rpyc/security/advisories/GHSA-h5cg-53g7-gqjw"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/tomerfiliba-org/rpyc","events":[{"introduced":"0"},{"fixed":"0194cbdf6992ab5eaaea973c596c1efa4e33193f"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"6.0.0"}]}}],"versions":["3.4.4","4.0.0","4.0.1","4.0.2","4.1.0","4.1.1","4.1.2","4.1.3","4.1.4","4.1.5","5.0.0","5.0.1","5.1.0","5.2.1","5.2.2","5.2.3","5.3.0","5.3.1","v3.0.7","v3.1.0","v3.1.0-RC1","v3.2.0","v3.2.1","v3.2.2","v3.3","v3.3-rc1","v3.4.0","v3.4.1","v3.4.2","v3.4.3"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-27758.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}