2 matches found
CVE-2020-4066 Command Injection in Limdu trainBatch function
In Limdu before 0.95, the trainBatch function has a command injection vulnerability. Clients of the Limdu library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. This has been patched in 0.95...
CVE-2020-4066
Limdu prior to version 0.95 contains a command injection vulnerability in the trainBatch function. This affects users of Limdu’ s Node.js machine learning framework that rely on shell-executed components (e.g., SVM-related tools). The issue can enable an attacker to execute arbitrary OS commands ...