Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:43 a.m.7 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8CVSS7.3AI score0.01267EPSS
Exploits2References1
vulnersOsv
vulnersOsv
added 2024/01/22 3:30 a.m.6 views

exposeq (>=4.1.3 <=4.6.1), squadds (>=0.0.0 <=0.0.3) potentially affected by CVE-2024-23752 via pandasai (>=1.3.3 <=1.5.11)

pandasai PYPI version =1.3.3, =4.1.3, =0.0.0, =0.0.3 Source cves: CVE-2024-23752 Source advisory: OSV:GHSA-5G73-69P4-7GVX...

9.8CVSS7.2AI score0.01006EPSS
Exploits1
Circl
Circl
added 2024/01/22 2:21 a.m.9 views

CVE-2024-23752

creationtimestamp| type| source ---|---|--- 2024-01-22 02:21:35+00:00| seen| https://t.me/ctinow/170954 2024-02-16 08:16:33+00:00| seen| https://t.me/ctinow/186167...

9.8CVSS8.7AI score0.01006EPSS
Exploits1References2
NVD
NVD
added 2024/01/22 1:15 a.m.36 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8CVSS9.6AI score0.01006EPSS
Exploits1References1
OSV
OSV
added 2024/01/22 12:0 a.m.7 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8CVSS9.6AI score0.01006EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/22 12:0 a.m.37 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8AI score0.01006EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/01/22 12:0 a.m.5 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

7.7AI score0.01006EPSS
Exploits1References1
Rows per page
Query Builder