Lucene search
K

4 matches found

CVE
CVE
added 2026/05/27 5:24 p.m.24 views

CVE-2026-44345

CVE-2026-44345 affects BentoML. A multi-line value supplied to docker.base_image in bento.yaml is interpolated into the Dockerfile without escaping or validation, allowing an attacker-controlled Dockerfile fragment to inject arbitrary RUN directives. When bentoml containerize runs docker build, t...

8.8CVSS6AI score0.00317EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2026/05/11 2:27 p.m.4 views

ai-dynamo (=0.1.0), bento2seldon (>=0.1.0 <=0.4.0) +16 more potentially affected by CVE-2026-44345 via bentoml (>=0.10.1 <=1.4.3)

bentoml PYPI version =0.10.1, =0.1.0, =0.1.0, =0.0.10, =0.0.5, =0.3.12, =0.0.1, =1.0.3, =0.0.10, =0.0.1, =0.0.1, =0.0.13 and more Source cves: CVE-2026-44345 Source advisory: OSV:GHSA-78F9-R8MH-4XM2...

8.8CVSS5.4AI score0.00317EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/11 2:27 p.m.8 views

ai-dynamo (=0.1.0), bentoctl (=0.2.3) +6 more potentially affected by CVE-2026-44345 via bentoml (>=1.0.0a7 <=1.4.3)

bentoml PYPI version =1.0.0a7, =1.0.1, =0.3.12, =0.0.1, =1.0.3, =0.0.10, =0.6.20 - raptor-labsdk =0.3.2 Source cves: CVE-2026-44345 Source advisory: SNYK:PYTHON-BENTOML-16642321...

8.8CVSS5.8AI score0.00317EPSS
Exploits1
Circl
Circl
added 2026/05/07 10:38 a.m.10 views

CVE-2026-44345

creationtimestamp| type| source ---|---|--- 2026-05-07 10:38:12+00:00| published-proof-of-concept| https://github.com/bentoml/BentoML/security/advisories/GHSA-78f9-r8mh-4xm2...

8.8CVSS5.8AI score0.00317EPSS
Exploits1References1
Rows per page
Query Builder