4 matches found
Apollo Federation 安全漏洞
Apollo Federation is an architecture for the Apollo community to declaratively combine APIs into a unified graph. A security vulnerability exists in Apollo Federation versions prior to 2.10.1, which stems from improper handling of fragment extensions and could lead to a denial of service...
PT-2024-31385 · Apache · Apache Airflow
Name of the Vulnerable Software and Affected Versions: Apache Airflow versions prior to 2.10.1 Description: The issue allows DAG authors to add local settings to the DAG folder and get it executed by the scheduler, where the scheduler is not supposed to execute code submitted by the DAG author...
Mlflow 访问控制错误漏洞
Mlflow is an open source platform for machine learning lifecycles. An access control error vulnerability exists in Mlflow versions prior to 2.10.1 that stems from incorrect access control...
CVE-2011-4601
familyfeedbag.c in the oscar protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted 1 AIM or 2 ICQ message associated with buddy-list addition...