{"id":"CVE-2014-3539","details":"base/oi/doa.py in the Rope library in CPython (aka Python) allows remote attackers to execute arbitrary code by leveraging an unsafe call to pickle.load.","aliases":["GHSA-r38r-qp28-2m63","PYSEC-2018-100"],"modified":"2026-04-16T06:15:36.819479602Z","published":"2018-04-06T16:29:00Z","related":["openSUSE-SU-2024:10052-1","openSUSE-SU-2024:11267-1","openSUSE-SU-2024:14161-1"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2015/02/07/1"},{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1116485"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2015/02/07/1"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1116485"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}