66 matches found
About the security content of visionOS 26.5
About the security content of visionOS 26.5 This document describes the security content of visionOS 26.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
About the security content of tvOS 26.5
About the security content of tvOS 26.5 This document describes the security content of tvOS 26.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
CVE-2026-20203 Improper Access Control in Data Model Acceleration in Splunk Enterprise
In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the admin or power Splunk roles, has write permission on...
CVE-2026-20203
CVE-2026-20203 describes improper access control in Data Model Acceleration for Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127. A low-privilege user ...
CVE-2025-14925
A flaw was found in Hugging Face Accelerate. A remote attacker can achieve arbitrary code execution by exploiting a deserialization of untrusted data vulnerability. This occurs when the target visits a malicious page or opens a malicious file, leading to improper validation of user-supplied data...
CVE-2025-14925
Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Accelerate. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-14925 Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability
Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Accelerate. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-14925 Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability
Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Accelerate. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-14925
CVE-2025-14925 affects Hugging Face Accelerate. The vulnerability stems from improper validation during parsing of checkpoints, enabling deserialization of untrusted data. An attacker can trigger remote code execution by convincing a user to visit a malicious page or open a crafted file, with cod...
Deserialization of Untrusted Data
Overview accelerate is an Accelerate Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the parsing of checkpoints. An attacker can execute arbitrary code by convincing a user to open a specially crafted file or visit a malicious web page. Note: The report w...
3-04-2025-ttm (=0.1.0), a2 (>=0.10.5 <=0.10.13) +3088 more potentially affected by CVE-2025-14925 via accelerate (>=0.10.0 <=1.9.0)
accelerate PYPI version =0.10.0, =0.10.5, =0.2.1, =0.0.1, =1.1.0, =1.3.8, =0.1.1, =0.2.1, =0.1.2, =0.0.2, =0.0.8, =0.0.1, =1.4.7.1 - ace-step =0.1.0 and more Source cves: CVE-2025-14925 Source advisory: SNYK:PYTHON-ACCELERATE-14566490...
Hugging Face Accelerate 代码问题漏洞
Hugging Face Accelerate is a lightweight tool library for Python open sourced by Hugging Face. A code issue vulnerability exists in Hugging Face Accelerate that stems from a lack of validation of user-supplied data when parsing checkpoints, which could lead to deserialization of untrusted data an...
PT-2025-52382
Name of the Vulnerable Software and Affected Versions Hugging Face Accelerate affected versions not specified Description A flaw exists in Hugging Face Accelerate that allows remote attackers to execute arbitrary code on affected systems. Exploitation requires user interaction, such as visiting a...
(0Day) Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Accelerate. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
EUVD-2019-4095
Malware in sbrugna...
Malicious code in accelerate-cli (npm)
The package accelerate-cli was found to contain malicious code...
MAL-2025-13975 Malicious code in accelerate-cli (npm)
The package accelerate-cli was found to contain malicious code...
MAL-2025-21264 Malicious code in generator-accelerate-mern (npm)
The package generator-accelerate-mern was found to contain malicious code...
Malicious code in generator-accelerate-data-transform (npm)
The package generator-accelerate-data-transform was found to contain malicious code...
Malicious code in generator-accelerate-mern (npm)
The package generator-accelerate-mern was found to contain malicious code...