SUSE CVE-2026-10705

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

CVE-2026-10705

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

EUVD-2026-34064

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

CVE-2026-10705 dask HLL hyperloglog.py nunique_approx resource consumption

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

CVE-2026-10705 dask HLL hyperloglog.py nunique_approx resource consumption

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

CVE-2026-10705

CVE-2026-10705 affects dask up to 3.0, specifically the nunique_approx function in dask/dataframe/hyperloglog.py (HLL Handler). The flaw enables resource consumption and is exploitable remotely; attack complexity is reported as high. A fix is pending review (pull request awaiting acceptance). The...

CVE-2026-10705

A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

Linux Distros Unpatched Vulnerability : CVE-2026-10705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in dask up to 3.0. Affected by this issue is the function nuniqueapprox of the file dask/dataframe/hyperloglog.py of the component HLL...

UBUNTU-CVE-2026-10705

A flaw has been found in dask up to 3.0. Affected by this issue is the...

PT-2026-45899

A flaw has been found in dask up to 3.0. Affected by this issue is the function nunique approx of the file dask/dataframe/hyperloglog.py of the component HLL Handler. This manipulation causes resource consumption. The attack is possible to be carried out remotely. A high degree of complexity is...

CVE-2026-39892 vulnerabilities

Vulnerabilities for packages: jupyter-base-notebook, kubeflow-volumes-web-app, datadog-agent, semgrep, mycli, k8s-sidecar, in-toto, mitmproxy, kserve, py3-cassandra-medusa, kubeflow-pipelines-visualization-server, superset, open-webui, airflow, kubeflow-jupyter-web-app, dask-kubernetes...

GHSA-P423-J2CM-9VMQ vulnerabilities

Vulnerabilities for packages: jupyter-base-notebook, kubeflow-volumes-web-app, datadog-agent, semgrep, mycli, k8s-sidecar, in-toto, mitmproxy, kserve, py3-cassandra-medusa, kubeflow-pipelines-visualization-server, superset, open-webui, airflow, kubeflow-jupyter-web-app, dask-kubernetes...

GHSA-P423-J2CM-9VMQ vulnerabilities

Vulnerabilities for packages: superset, kubeflow-volumes-web-app, pgadmin4, authentik, airflow, request-1276, mycli, label-studio, dagster, datadog-agent-fips, opal, py3-cassandra-medusa, gitlab-cng-fips, localstack, k8s-sidecar, kubeflow-jupyter-web-app, apache-beam-python-3.13-sdk, mitmproxy,...

CVE-2026-39892 vulnerabilities

Vulnerabilities for packages: superset, kubeflow-volumes-web-app, pgadmin4, authentik, airflow, request-1276, mycli, label-studio, dagster, datadog-agent-fips, opal, py3-cassandra-medusa, gitlab-cng-fips, localstack, k8s-sidecar, kubeflow-jupyter-web-app, apache-beam-python-3.13-sdk, mitmproxy,...

Cross Site Scripting

distributed is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper handling of user-controlled input in the Dask dashboard when accessed via Jupyter Lab and jupyter-server-proxy, allowing attackers to craft a malicious URL that triggers script execution and results in...

CVE-2026-1703 vulnerabilities

Vulnerabilities for packages: datadog-agent, tensorflow-cpu-jupyter, kubeflow-katib, pypy-3.10, dask-gateway...

GHSA-6VGW-5PG2-W6JP vulnerabilities

Vulnerabilities for packages: datadog-agent, tensorflow-cpu-jupyter, kubeflow-katib, pypy-3.10, dask-gateway...

GHSA-6VGW-5PG2-W6JP vulnerabilities

Vulnerabilities for packages: awx, pypy-3.10, dask-gateway, pgadmin4, pgadmin4-fips, datadog-agent-fips, tensorflow-gpu-jupyter, ansible-operator, nemo, kubeflow-katib, airflow, request-1276, localstack, ansible-operator-fips, tensorflow-cpu-jupyter, datadog-agent...

CVE-2026-1703 vulnerabilities

Vulnerabilities for packages: awx, pypy-3.10, dask-gateway, pgadmin4, pgadmin4-fips, datadog-agent-fips, tensorflow-gpu-jupyter, ansible-operator, nemo, kubeflow-katib, airflow, request-1276, localstack, ansible-operator-fips, tensorflow-cpu-jupyter, datadog-agent...

CVE-2026-23949 vulnerabilities

Vulnerabilities for packages: py3-setuptools, datadog-agent, semgrep, tensorflow-cpu-jupyter, py3-cassandra-medusa, kserve, mlflow, kubeflow-katib, pypy-3.10, pypy-3.11, open-webui, superset, airflow, kubeflow-jupyter-web-app, dask-kubernetes, emissary...