Description

cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) serialization format. Starting in version 3.0.0 and prior to version 5.8.0, whhen a CBORDecoder instance is reused across multiple decode operations, values marked with the shareable tag (28) persist in memory and can be accessed by subsequent CBOR messages using the sharedref tag (29). This allows an attacker-controlled message to read data from previously decoded messages if the decoder is reused across trust boundaries. Version 5.8.0 patches the issue.

Related CPE's

a

agronholm

cbor2

*

*

*

*

*

python

Vulnerable

References

https://github.com/agronholm/cbor2/pull/268

ExploitPatch

https://github.com/agronholm/cbor2/security/advisories/GHSA-wcj4-jw5j-44wh

ExploitVendor Advisory

https://github.com/agronholm/cbor2/security/advisories/GHSA-wcj4-jw5j-44wh

ExploitVendor Advisory

Weaknesses

[email protected]

Secondary
CWE-212

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 · High

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2025-12-31T01:15:42.527Z

2 weeks ago

Last modified

2026-01-02T15:40:40.337Z

1 week ago