Pymatgen 2024.1 CIF Parser Remote Code Execution (CVE-2024-23346) – Exploit PoC
A remote code execution vulnerability in the pymatgen CIF parser allows maliciously crafted CIF files to execute arbitrary system commands when parsed. This article demonstrates the vulnerability and provides a proof-of-concept exploit.