Lucene search

CVE-2024-34997

🗓️ 17 May 2024 00:00:00Reported by mitreType

joblib v1.4.2 deserialization vulnerabilit

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 14
Vulnrichment	CVE-2024-34997	17 May 202400:00	–	vulnrichment
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite Predict Component includes joblib-1.4.0-py3-none-any.whl which is vulnerable to this CVE-2024-34997	31 Jul 202407:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watsonx Orchestrate for IBM Cloud Pak for Data affected by a vulnerability in joblib-1.2.0-py3-none-any.whl CVE-2024-34997	21 Aug 202416:44	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to joblib-1.1.1-py2.py3-none-any.whl CVE-2024-34997	28 Jan 202522:08	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to joblib arbitrary code execution vulnerability [ CVE-2024-34997]	5 Aug 202421:46	–	ibm
IBM Security Bulletins	Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities	8 Jul 202408:39	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data	28 Mar 202517:38	–	ibm
Debian CVE	CVE-2024-34997	17 May 202419:15	–	debiancve
Veracode	Deserialization Of Untrusted Data	22 May 202406:12	–	veracode
NVD	CVE-2024-34997	17 May 202419:15	–	nvd

Source	Link
github	www.github.com/joblib/joblib/issues/1582
github	www.github.com/joblib/joblib/issues/977

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 May 2024 00:00Current

6.8Medium risk

Vulners AI Score6.8

EPSS0.00486