1102 matches found
Pytorch-Lightning Code Injection Vulnerability
Pytorch-Lightning is an open source lightweight PyTorch wrapper for high-performance Ai research. Used for high-performance Ai research, Pytorch-Lightning is vulnerable to a code injection vulnerability that could be exploited to inject code into the GitHub repository...
GHSA-R5QJ-CVF9-P85H Code Injection in PyTorch Lightning
PyTorch Lightning version 1.5.10 and prior is vulnerable to code injection. An attacker could execute commands on the target OS running the operating system by setting the PLTRAINERGPUS when using the Trainer module. A patch is included in the 1.6.0 release...
anomalib (>=0.2.2 <=0.2.4), argos-trains (=0.1.0) +174 more potentially affected by CVE-2022-0845 via pytorch-lightning (>=0.10.0 <=1.5.9)
pytorch-lightning PYPI version =0.10.0, =0.2.2, =0.1.1, =0.3.2b20220222, =0.3.2b20220222, =0.0.1, =0.0.7, =3.0.0, =3.3.0 and more Source cves: CVE-2022-0845 Source advisory: OSV:GHSA-R5QJ-CVF9-P85H...
Code Injection in PyTorch Lightning
PyTorch Lightning version 1.5.10 and prior is vulnerable to code injection. An attacker could execute commands on the target OS running the operating system by setting the PLTRAINERGPUS when using the Trainer module. A patch is included in the 1.6.0 release...
CVE-2022-0845
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
CVE-2022-0845
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
Code injection
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
anomalib (>=0.2.2 <=0.2.4), argos-trains (=0.1.0) +174 more potentially affected by CVE-2022-0845 via pytorch-lightning (>=0.10.0 <=1.5.9)
pytorch-lightning PYPI version =0.10.0, =0.2.2, =0.1.1, =0.3.2b20220222, =0.3.2b20220222, =0.0.1, =0.0.7, =3.0.0, =3.3.0 and more Source cves: CVE-2022-0845 Source advisory: OSV:PYSEC-2022-181...
PYSEC-2022-181
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
PYSEC-2022-181
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
CVE-2022-0845
CVE-2022-0845 affects PyTorch Lightning (repository pytorchlightning/pytorch-lightning) and is a Code Injection vulnerability present in releases prior to 1.6.0. Public descriptions indicate an injection path enabling code execution and, in some sources, exploitation of trainer configuration (e.g...
CVE-2022-0845 Code Injection in pytorchlightning/pytorch-lightning
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0...
pytorch-lightning 代码注入漏洞
Pytorch-Lightning is an open source lightweight PyTorch wrapper for high-performance Ai research. Used for high-performance Ai research, Pytorch-Lightning is vulnerable to a code injection vulnerability that could be exploited to inject code into the GitHub repository...
Code Injection
Description The attacker can execute commands on the target OS running the operating system by setting the PLTRAINERGPUS when using the Trainer module. Proof of Concept bash $ pip3 install pytorch-lightning python import os from pytorchlightning import Trainer from...
AZL-41431 CVE-2021-22569 affecting package pytorch for versions less than 2.2.2-5
An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for several minutes by creating large numbers of short-lived objects that cause frequent, repeated...
anomalib (>=0.2.2 <=0.2.4), argos-trains (=0.1.0) +174 more potentially affected by CVE-2021-4118 via pytorch-lightning (>=0.10.0 <=1.5.9)
pytorch-lightning PYPI version =0.10.0, =0.2.2, =0.1.1, =0.3.2b20220222, =0.3.2b20220222, =0.0.1, =0.0.7, =3.0.0, =3.3.0 and more Source cves: CVE-2021-4118 Source advisory: OSV:GHSA-2VJ5-PX25-GJRP...
pytorch-lightning is vulnerable to Deserialization of Untrusted Data
pytorch-lightning is vulnerable to Deserialization of Untrusted Data...
GHSA-2VJ5-PX25-GJRP pytorch-lightning is vulnerable to Deserialization of Untrusted Data
pytorch-lightning is vulnerable to Deserialization of Untrusted Data...
Pytorch-Lightning code issue vulnerability
Pytorch-Lightning is an open source lightweight PyTorch wrapper. Used for high-performance Ai research. pytorch-lightning suffers from a code issue vulnerability that stems from the software's tendency to deserialize untrustworthy data, which can be exploited by an attacker to cause code executio...
CVE-2021-4118
pytorch-lightning is vulnerable to Deserialization of Untrusted Data...