Lucene search
K

25 matches found

OSV
OSV
added 2024/06/02 10:30 p.m.24 views

GHSA-QQ99-P57R-G3V7 code injection vulnerability exists in the huggingface/text-generation-inference repository

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS5.3AI score0.00316EPSS
Exploits0References4
NVD
NVD
added 2024/05/30 3:15 p.m.24 views

CVE-2024-3924

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS5.4AI score0.00316EPSS
Exploits0References2
OSV
OSV
added 2024/05/30 3:15 p.m.19 views

CVE-2024-3924

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS7.5AI score
Exploits0References2
Cvelist
Cvelist
added 2024/05/30 2:59 p.m.30 views

CVE-2024-3924 Code Injection in huggingface/text-generation-inference

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.headref user input, which is used to dynamically construct a command for installing ...

4.4CVSS5.3AI score0.00316EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/30 12:0 a.m.7 views

Text Generation Inference 安全漏洞

Text Generation Inference is a Rust, Python and gRPC server for text generation inference. A security vulnerability exists in Text Generation Inference version 2.0.0 and earlier, which stems from insecure handling of user input and a code injection vulnerability that could be exploited by an...

4.4CVSS5.5AI score0.00316EPSS
Exploits0References3
Rows per page
Query Builder