CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CNVD•added 2022/07/13 12:0 a.m.•26 views

Anakin path traversal vulnerability

Anakin is a cross-platform, high-performance inference engine open-sourced by PaddlePaddle.Anakin 0.1.1 and earlier versions have a path traversal vulnerability that stems from a failure of Flask's sendfile function to properly filter special elements in resource or file paths, which could be...

9.3CVSS3.6AI score0.00432EPSS

Exploits1References1

NVD•added 2022/07/11 1:15 a.m.•7 views

CVE-2022-31523

The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS0.00432EPSS

Exploits1References1

OSV•added 2022/07/11 1:15 a.m.•7 views

CVE-2022-31523

The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.3CVSS6.9AI score

Exploits0References1

Cvelist•added 2022/07/11 12:55 a.m.•14 views

CVE-2022-31523

The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

9.5AI score0.00432EPSS

Exploits1References1

CVE•added 2022/07/11 12:55 a.m.•57 views

CVE-2022-31523

The CVE-2022-31523 vulnerability affects the PaddlePaddle/Anakin repository up to version 0.1.1, where an absolute path traversal flaw exists because Flask send_file is used unsafely. The root cause is improper filtering of path elements in resource/file paths, which could allow an attacker to ac...

9.3CVSS9.3AI score0.00432EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by