Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/05/28 2:48 p.m.7 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to lightgbm-4.5.0-py3-none-manylinux_2_28_x86_64.whl CVE-2024-43598

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to lightgbm-4.5.0-py3-none-manylinux228x8664.whl CVE-2024-43598. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-43598 DESCRIPTION: Microsoft LightGBM could allow...

8.1CVSS7.5AI score0.01384EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/14 10:25 a.m.34 views

Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.

Summary Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

8.1CVSS7.6AI score0.01384EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/11/21 12:0 a.m.11 views

LightGBM < 4.6.0 RCE

The version of the LightGBM library installed on the remote host is prior to 4.6.0. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 8090...

8.1CVSS6.4AI score0.01384EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2024/11/12 6:44 p.m.6 views

ale-uy (>=1.1.2 <=1.5.0), autocate (=0.1.0) +62 more potentially affected by CVE-2024-43598 via lightgbm (>=4.0.0 <=4.5.0)

lightgbm PYPI version =4.0.0, =1.1.2, =1.0.0, =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =1.0.1, =1.0.3 - cs-mini-2024z-automl =0.1.0 - delphina =0.0.0 and more Source cves: CVE-2024-43598 Source advisory: SNYK:PYTHON-LIGHTGBM-8516056...

8.1CVSS6.2AI score0.01384EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/11/12 6:30 p.m.9 views

accutuning-helpers (>=1.0.32 <=1.1.0), al-for-design (=0.0.1) +245 more potentially affected by CVE-2024-43598 via lightgbm (>=2.0.12 <=4.5.0)

lightgbm PYPI version =2.0.12, =1.0.32, =1.1.2, =0.1.0, =0.10.0.dev0, =0.3.8.2, =0.2.7, =0.3.2, =0.0.1, =1.0.71, =2.9.0, =0.1.0, =0.1.1 and more Source cves: CVE-2024-43598 Source advisory: OSV:GHSA-2586-F3P4-HQ84...

8.1CVSS6.2AI score0.01384EPSS
Exploits0
NVD
NVD
added 2024/11/12 6:15 p.m.17 views

CVE-2024-43598

LightGBM Remote Code Execution Vulnerability...

8.1CVSS0.01384EPSS
Exploits0References1
OSV
OSV
added 2024/11/12 6:15 p.m.3 views

CVE-2024-43598

LightGBM Remote Code Execution Vulnerability...

8.1CVSS5.9AI score0.01384EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/11/12 6:15 p.m.6 views

accutuning-helpers (>=1.0.32 <=1.1.0), al-for-design (=0.0.1) +239 more potentially affected by CVE-2024-43598 via lightgbm (>=2.1.1 <=4.5.0)

lightgbm PYPI version =2.1.1, =1.0.32, =1.1.2, =0.1.0, =0.10.0.dev0, =0.3.8.2, =0.2.7, =0.3.2, =0.0.1, =1.0.71, =0.1.0, =0.0.4, =1.2.1b20250306 and more Source cves: CVE-2024-43598 Source advisory: OSV:PYSEC-2024-231...

8.1CVSS6.2AI score0.01384EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/11/12 5:53 p.m.22 views

CVE-2024-43598 LightGBM Remote Code Execution Vulnerability

...

8.1CVSS7.2AI score0.01384EPSS
Exploits0References1
CVE
CVE
added 2024/11/12 5:53 p.m.97 views

CVE-2024-43598

CVE-2024-43598 is a LightGBM remote code execution vulnerability with multiple public advisories. IBM bulletins describe the issue affecting IBM Watson Studio in Cloud Pak for Data (v4.0–5.2.x ranges) and LightGBM wheel components, labeling it as a remote code execution risk (CWE-122) caused by d...

8.1CVSS8.3AI score0.01384EPSS
Exploits0References1Affected Software1
Kaspersky
Kaspersky
added 2024/11/12 12:0 a.m.13 views

KLA77111 ACE vulnerabilities in Microsoft Open Source Software

Remote code execution vulnerabilities were found in Microsoft Open Source Software. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in TorchGeo can be exploited remotely to execute...

8.1CVSS8.9AI score0.01384EPSS
Exploits0References3
Rows per page
Query Builder