7 matches found
EUVD-2023-2382
Malicious code in bioql PyPI...
EUVD-2022-1063
Malicious code in bioql PyPI...
CVE-2023-38889
An issue in Alluxio v.2.9.3 and before allows an attacker to execute arbitrary code via a crafted script to the username parameter of lluxio.util.CommonUtils.getUnixGroupsjava.lang.String...
CVE-2022-23848
In Alluxio before 2.7.3, the logserver does not validate the input stream. NOTE: this is not the same as the CVE-2021-44228 Log4j vulnerability...
CVE-2023-38889
An issue in Alluxio v.2.9.3 and before allows an attacker to execute arbitrary code via a crafted script to the username parameter of lluxio.util.CommonUtils.getUnixGroupsjava.lang.String...
Alluxio Code Injection Vulnerability
Alluxio is Alluxio's to increase the speed of end-to-end distributed machine learning in the cloud. A security vulnerability exists in Alluxio version 2.9.3 and earlier versions, which originates from a script that can execute arbitrary code on the username parameter of...
Alluxio 安全漏洞
Alluxio is Alluxio's to improve the speed of end-to-end distributed machine learning in the cloud. a security vulnerability exists in versions prior to Alluxio 2.7.3, which stems from the failure of the log server to validate input streams. No details of the vulnerability are currently available...