Vulners
Lucene search
The vulnerability of the AI application scaling framework and Python Ray, related to deficiencies in the authentication process, allows attackers to read arbitrary files from the /static/ directory.
🗓️ 03 Apr 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru👁 6 Views
| Reporter | Title | Published | Views | Family All 104 |
|---|---|---|---|---|
 | Exploit for Server-Side Request Forgery in Anyscale Ray | 10 Jan 202406:26 | – | githubexploit |
| Exploit for Server-Side Request Forgery in Anyscale Ray | 29 Mar 202409:54 | – | githubexploit |
| Exploit for OS Command Injection in Ray_Project Ray | 21 Apr 202414:30 | – | githubexploit |
| Exploit for OS Command Injection in Ray_Project Ray | 28 Oct 202520:04 | – | githubexploit |
| Exploit for OS Command Injection in Ray_Project Ray | 19 Jun 202619:08 | – | githubexploit |
| Exploit for OS Command Injection in Ray_Project Ray | 10 Apr 202409:24 | – | githubexploit |
 | Ray OS v2.6.3 - Command Injection Exploit | 12 Apr 202400:00 | – | zdt |
| Ray cpu_profile Command Injection Exploit | 27 Aug 202400:00 | – | zdt |
| Ray Agent Job Remote Code Execution Exploit | 27 Aug 202400:00 | – | zdt |
 | CVE-2023-48023 | 28 Nov 202308:15 | – | attackerkb |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Apr 2024 00:00Current
7.1High risk
Vulners AI Score7.1
CVSS 37.5
CVSS 27.8
EPSS0.81512