Lucene search
K

5 matches found

OSV
OSV
added 2025/03/20 12:32 p.m.6 views

GHSA-R229-5WGF-F28G Aim Improper Access Control

In version 3.22.0 of aimhubio/aim, the AimQL query language uses an outdated version of the safergetattr function from RestrictedPython. This version does not protect against the str.formatmap method, allowing an attacker to leak server-side secrets or potentially gain unrestricted code execution...

5.9CVSS7.6AI score0.00702EPSS
Exploits1References4
NVD
NVD
added 2025/03/20 10:15 a.m.6 views

CVE-2024-6851

In version 3.22.0 of aimhubio/aim, the LocalFileManager.cleanup function in the aim tracking server accepts a user-specified glob-pattern for deleting files. The function does not verify that the matched files are within the directory managed by LocalFileManager, allowing a maliciously crafted...

7.5CVSS0.00953EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:11 a.m.58 views

CVE-2024-8238

CVE-2024-8238 affects aimhubio/aim v3.22.0 where AimQL uses an outdated safer_getattr() from RestrictedPython, failing to block str.format_map() and allowing access to arbitrary Python attributes (e.g., os.environ) and potential unrestricted code execution if a malicious .dll/.so is loaded. Multi...

8.1CVSS7.4AI score0.00702EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2025/03/20 10:9 a.m.51 views

CVE-2024-6851

CVE-2024-6851 affects aimhubio/aim v3.22.0. The LocalFileManager._cleanup function accepts a user-supplied glob-pattern and does not verify that matched files stay within the directory managed by LocalFileManager, allowing a crafted glob-pattern to delete arbitrary files. Reported impact is arbit...

7.5CVSS7.5AI score0.00953EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.6 views

Aim 访问控制错误漏洞

Aim is an easy-to-use and high-performance open source experiment tracker from Aim Open Source USA. An access control error vulnerability exists in Aim version 3.22.0, which stems from the AimQL query language's use of the outdated safergetattr function and unprotected str.formatmap method, which...

8.1CVSS6.3AI score0.00702EPSS
Exploits1References1
Rows per page
Query Builder