Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:35 a.m.6 views

CVE-2024-45853

Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when used for a prediction...

7.5CVSS7.3AI score0.00481EPSS
Exploits1References1
PyPA
PyPA
added 2024/09/12 1:15 p.m.4 views

PYSEC-2024-85

Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it...

7.5CVSS7.6AI score0.00481EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2024/09/12 1:15 p.m.7 views

PYSEC-2024-83

Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when used for a prediction...

7.5CVSS7.6AI score0.00481EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2024/09/12 12:0 a.m.2 views

MindsDB 安全漏洞

MindsDB is an emerging low-code machine learning platform from MindsDB, Inc. A security vulnerability exists in MindsDB version 23.10.2.0 and earlier, which stems from the presence of deserialization of untrusted data, allowing a maliciously uploaded model to run arbitrary code on the server when...

7.5CVSS7.1AI score0.00481EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/09/12 12:0 a.m.5 views

MindsDB 安全漏洞

MindsDB is an emerging low-code machine learning platform from MindsDB, Inc. A security vulnerability exists in MindsDB version 23.10.2.0 and earlier, which stems from the presence of deserialization of untrusted data, allowing a maliciously uploaded model to run arbitrary code on the server when...

8.8CVSS7.1AI score0.0068EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/09/12 12:0 a.m.9 views

MindsDB 安全漏洞

MindsDB is an emerging low-code machine learning platform from MindsDB, Inc. A security vulnerability exists in MindsDB version 23.10.2.0 and earlier, which stems from the presence of deserialization of untrusted data, allowing a maliciously uploaded model to run arbitrary code on the server when...

7.5CVSS7.1AI score0.00481EPSS
Exploits1References2
Rows per page
Query Builder