Lucene search
K

495 matches found

OSV
OSV
added 2026/06/29 11:50 a.m.9 views

PYSEC-2026-444 Code Injection in paddlepaddle

The vulnerability arises from the way the url parameter is incorporated into the command string without proper validation or sanitization. If the url is constructed from untrusted sources, an attacker could potentially inject malicious commands...

9.3CVSS5.8AI score0.00456EPSS
Exploits1References5
OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-442 PaddlePaddle Path Traversal vulnerability

Arbitrary File Overwrite Via Path Traversal in paddlepaddle/paddle before 2.6...

9.1CVSS7.3AI score0.01048EPSS
Exploits1References6
OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-445 PaddlePaddle vulnerable to remote code execution

remote code execution in paddlepaddle/paddle 2.6.0...

9.8CVSS7.9AI score0.01638EPSS
Exploits1References6
OSV
OSV
added 2026/06/29 11:50 a.m.9 views

PYSEC-2026-441 PaddlePaddle Out-of-bounds Read vulnerability

Out-of-bounds read in gathertree in PaddlePaddle before 2.4. A patch is available in the release/2.4 branch...

9.1CVSS7.3AI score0.00667EPSS
Exploits1References8
OSV
OSV
added 2026/06/29 11:50 a.m.8 views

PYSEC-2026-443 PaddlePaddle vulnerable to code injection via winstr

In PaddlePaddle before 2.4, paddle.audio.functional.getwindow is vulnerable to code injection because it calls eval on a user-supplied winstr. This may lead to arbitrary code execution...

9.8CVSS7.6AI score0.01281EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.11 views

CVE-2026-10800

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS4.8AI score0.00075EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 10:16 a.m.16 views

CVE-2026-10800

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS0.00075EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/04 9:45 a.m.45 views

CVE-2026-10800 PaddlePaddle FastDeploy MultimodalHasher hasher.py hash_features weak hash

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS0.00075EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/04 9:45 a.m.8 views

CVE-2026-10800

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS5.2AI score0.00075EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 9:45 a.m.9 views

CVE-2026-10800 PaddlePaddle FastDeploy MultimodalHasher hasher.py hash_features weak hash

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

3.6CVSS5.2AI score0.00075EPSS
Exploits0References8
OSV
OSV
added 2026/06/04 9:45 a.m.3 views

CVE-2026-10800 PaddlePaddle FastDeploy MultimodalHasher hasher.py hash_features weak hash

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hashfeatures of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A high...

2CVSS5.4AI score0.00075EPSS
Exploits0References10
CVE
CVE
added 2026/06/04 9:45 a.m.24 views

CVE-2026-10800

The CVE-2026-10800 entry concerns PaddlePaddle FastDeploy up to 2.4.1, specifically the MultimodalHasher component’s hasher.py hash_features function. The weakness can allow manipulation that leads to the use of a weak hash, with exploitation requiring local access and carries a high attack compl...

3.6CVSS5.2AI score0.00075EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.20 views

PT-2026-46167

A weakness has been identified in PaddlePaddle FastDeploy up to 2.4.1. Affected by this issue is the function hash features of the file fastdeploy/multimodal/hasher.py of the component MultimodalHasher. Executing a manipulation can lead to use of weak hash. The attack requires local access. A hig...

3.6CVSS5.2AI score0.00075EPSS
Exploits0References9
Packet Storm News
Packet Storm News
added 2026/02/10 12:0 a.m.21 views

GPU-Fuzz: Finding Memory Errors in Deep Learning Frameworks

GPU memory errors are a critical threat to deep learning DL frameworks, leading to crashes or even security issues. We introduce GPU-Fuzz, a fuzzer locating these issues efficiently by modeling operator parameters as formal constraints. GPU-Fuzz utilizes a constraint solver to generate test cases...

5.6AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-0131

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00484EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0191

Malicious code in bioql PyPI...

10CVSS9AI score0.01087EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0132

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00484EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-0148

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01172EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0919

Malicious code in bioql PyPI...

9.3CVSS8.7AI score0.01166EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-0141

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00529EPSS
Exploits0References5
Rows per page
Query Builder