11 matches found
Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to lightgbm-4.5.0-py3-none-manylinux_2_28_x86_64.whl CVE-2024-43598
Summary IBM Maximo Application Suite - Monitor Component is vulnerable to lightgbm-4.5.0-py3-none-manylinux228x8664.whl CVE-2024-43598. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-43598 DESCRIPTION: Microsoft LightGBM could allow...
Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.
Summary Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...
LightGBM < 4.6.0 RCE
The version of the LightGBM library installed on the remote host is prior to 4.6.0. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 8090...
ale-uy (>=1.1.2 <=1.5.0), autocate (=0.1.0) +62 more potentially affected by CVE-2024-43598 via lightgbm (>=4.0.0 <=4.5.0)
lightgbm PYPI version =4.0.0, =1.1.2, =1.0.0, =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =1.0.1, =1.0.3 - cs-mini-2024z-automl =0.1.0 - delphina =0.0.0 and more Source cves: CVE-2024-43598 Source advisory: SNYK:PYTHON-LIGHTGBM-8516056...
accutuning-helpers (>=1.0.32 <=1.1.0), al-for-design (=0.0.1) +245 more potentially affected by CVE-2024-43598 via lightgbm (>=2.0.12 <=4.5.0)
lightgbm PYPI version =2.0.12, =1.0.32, =1.1.2, =0.1.0, =0.10.0.dev0, =0.3.8.2, =0.2.7, =0.3.2, =0.0.1, =1.0.71, =2.9.0, =0.1.0, =0.1.1 and more Source cves: CVE-2024-43598 Source advisory: OSV:GHSA-2586-F3P4-HQ84...
CVE-2024-43598
LightGBM Remote Code Execution Vulnerability...
CVE-2024-43598
LightGBM Remote Code Execution Vulnerability...
accutuning-helpers (>=1.0.32 <=1.1.0), al-for-design (=0.0.1) +239 more potentially affected by CVE-2024-43598 via lightgbm (>=2.1.1 <=4.5.0)
lightgbm PYPI version =2.1.1, =1.0.32, =1.1.2, =0.1.0, =0.10.0.dev0, =0.3.8.2, =0.2.7, =0.3.2, =0.0.1, =1.0.71, =0.1.0, =0.0.4, =1.2.1b20250306 and more Source cves: CVE-2024-43598 Source advisory: OSV:PYSEC-2024-231...
CVE-2024-43598 LightGBM Remote Code Execution Vulnerability
...
CVE-2024-43598
CVE-2024-43598 is a LightGBM remote code execution vulnerability with multiple public advisories. IBM bulletins describe the issue affecting IBM Watson Studio in Cloud Pak for Data (v4.0–5.2.x ranges) and LightGBM wheel components, labeling it as a remote code execution risk (CWE-122) caused by d...
KLA77111 ACE vulnerabilities in Microsoft Open Source Software
Remote code execution vulnerabilities were found in Microsoft Open Source Software. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in TorchGeo can be exploited remotely to execute...