Lucene search
@huntrdevCVELIST:CVE-2023-2800HistoryMay 18, 2023 - 12:00 a.m.
CVE-2023-2800 Insecure Temporary File in huggingface/transformers
2023-05-1800:00:00
CWE-377
@huntrdev
www.cve.org
3
github
repository
huggingface
transformers
security
vulnerability
CVSS3
4.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5
Confidence
High
EPSS
0
Percentile
9.0%
Insecure Temporary File in GitHub repository huggingface/transformers prior to 4.30.0.
CNA Affected
[
{
"vendor": "huggingface",
"product": "huggingface/transformers",
"versions": [
{
"version": "unspecified",
"lessThan": "4.30.0",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
Insecure Temporary File
2023-01-05 13:42:55
osv
osv
transformers has Insecure Temporary File
2023-05-18 18:30:35
CVE-2023-2800
2023-05-18 17:15:08
cve
cve
CVE-2023-2800
2023-05-18 17:15:08
veracode
veracode
Insecure Temporary File
2023-05-19 05:03:18
ibm
ibm
nvd
nvd
CVE-2023-2800
2023-05-18 17:15:08
github
github
transformers has Insecure Temporary File
2023-05-18 18:30:35
prion
prion
Design/Logic Flaw
2023-05-18 17:15:00
CVSS3
4.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2023-2800