Lucene search
MitreCVELIST:CVE-2023-48022HistoryNov 28, 2023 - 12:00 a.m.
CVE-2023-48022
2023-11-2800:00:00
mitre
raw.githubusercontent.com
1
anyscale
ray
vulnerability
job submission
remote attacker
execute arbitrary code
cve-2023-48022
Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API. NOTE: the vendor’s position is that this report is irrelevant because Ray, as stated in its documentation, is not intended for use outside of a strictly controlled network environment
Related
cve
cve
githubexploit
githubexploit
Exploit for Server-Side Request Forgery in Anyscale Ray
2024-03-29 09:54:31
Exploit for Server-Side Request Forgery in Anyscale Ray
2024-01-10 06:26:01
prion
prion
Code injection
2023-11-28 08:15:00
Authentication flaw
2023-11-16 17:15:00
Command injection
2023-11-16 17:15:00
nessus
nessus
Ray Dashboard Job RCE (CVE-2023-48022)
2024-04-19 00:00:00
osv
osv
Ray Path Traversal vulnerability
2023-11-16 18:30:31
Ray Missing Authorization vulnerability
2023-11-16 21:30:46
cvelist
cvelist
CVE-2023-6021 Ray Log File Local File Include
2023-11-16 16:11:42
CVE-2023-6019 Ray Command Injection in cpu_profile Parameter
2023-11-16 16:12:07
github
github
Ray Path Traversal vulnerability
2023-11-16 18:30:31
Ray Missing Authorization vulnerability
2023-11-16 21:30:46
thn
thn