Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.7 views

BentoML < 1.4.34 Path Traversal

The version of the BentoML library installed on the remote host is prior to 1.4.34. It is, therefore, affected by a path traversal vulnerability: - BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript,...

7.4CVSS5.8AI score0.00437EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/28 3:16 a.m.4 views

CVE-2026-24123

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to version 1.4.34, BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript, docker.dockerfiletemplate,...

7.4CVSS6AI score0.00437EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/26 10:14 p.m.6 views

EUVD-2026-4723

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to version 1.4.34, BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript, docker.dockerfiletemplate,...

7.4CVSS6AI score0.00437EPSS
Exploits0References3
OSV
OSV
added 2026/01/26 9:17 p.m.6 views

GHSA-6R62-W2Q3-48HF BentoML has a Path Traversal via Bentofile Configuration

Summary BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript, docker.dockerfiletemplate, conda.environmentyml. An attacker can craft a malicious bentofile that, when built by a victim, exfiltrates arbitrary files fr...

7.4CVSS6AI score0.00437EPSS
Exploits0References5
Rows per page
Query Builder