CVE-2024-50636 affects PyMOL version 2.5.0, a molecular visualization system widely used in scientific research. The vulnerability resides in the "Run Script" functionality, which processes .PYM files as Python scripts without adequate validation or sandboxing. This design flaw allows attackers to craft malicious .PYM files containing arbitrary Python code, including reverse shell payloads, which execute with the same privileges as the user running PyMOL. The root cause is improper input validation and the unsafe execution of untrusted script content, classified under CWE-94 (Improper Control of Generation of Code). The vulnerability is remotely exploitable without authentication or user interaction, making it highly dangerous. The CVSS v3.1 base score of 9.8 reflects the ease of exploitation and the severe impact on confidentiality, integrity, and availability. No patches or official fixes are currently linked, and no exploits have been reported in the wild yet. This vulnerability poses a significant risk to environments where PyMOL is used to open or share .PYM files, potentially allowing attackers to execute arbitrary commands, steal sensitive data, or disrupt operations.

The impact of CVE-2024-50636 is severe for organizations relying on PyMOL 2.5.0, particularly in academic, pharmaceutical, and biotech sectors where molecular visualization is critical. Successful exploitation can lead to full system compromise, including unauthorized data access, data manipulation, and disruption of scientific workflows. Attackers can establish persistent access via reverse shells, escalate privileges, and move laterally within networks. Since the vulnerability requires no authentication or user interaction, it can be exploited through malicious .PYM files delivered via email, file sharing, or compromised repositories. This can result in intellectual property theft, exposure of sensitive research data, and operational downtime. The broad impact on confidentiality, integrity, and availability underscores the critical nature of this vulnerability.

To mitigate CVE-2024-50636, organizations should immediately implement the following measures: 1) Avoid opening .PYM files from untrusted or unknown sources to prevent execution of malicious code. 2) Restrict PyMOL usage to trusted environments and users with limited privileges to reduce potential damage. 3) Employ application whitelisting and endpoint detection to monitor and block suspicious Python script executions. 4) Use network segmentation to isolate systems running PyMOL from critical infrastructure. 5) Monitor logs for unusual process behavior or network connections indicative of reverse shell activity. 6) If possible, disable or restrict the "Run Script" functionality within PyMOL until a vendor patch is available. 7) Engage with the PyMOL development community or vendor for updates and patches addressing this vulnerability. 8) Educate users on the risks of opening unverified .PYM files and enforce strict file handling policies. These targeted actions go beyond generic advice and focus on reducing attack surface and early detection.