Lucene search
K

4 matches found

Huntr
Huntr
added 2022/06/04 11:47 a.m.25 views

Contextual Code Execution

Description The main function uses the eval function which can lead to contextual code execution, allowing an attacker to gain access to a system and execute commands with the privileges of the running program by setting NUITKAPYTHONPATH, NUITKANAMESPACES or NUITKAPTHIMPORTED to a malicious paylo...

7.2CVSS3.6AI score0.00965EPSS
Exploits2References1
vulnersOsv
vulnersOsv
added 2022/03/06 12:0 a.m.9 views

anomalib (>=0.2.2 <=0.2.4), argos-trains (=0.1.0) +174 more potentially affected by CVE-2022-0845 via pytorch-lightning (>=0.10.0 <=1.5.9)

pytorch-lightning PYPI version =0.10.0, =0.2.2, =0.1.1, =0.3.2b20220222, =0.3.2b20220222, =0.0.1, =0.0.7, =3.0.0, =3.3.0 and more Source cves: CVE-2022-0845 Source advisory: OSV:GHSA-R5QJ-CVF9-P85H...

10CVSS7.1AI score0.00965EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/03/05 10:15 p.m.4 views

anomalib (>=0.2.2 <=0.2.4), argos-trains (=0.1.0) +174 more potentially affected by CVE-2022-0845 via pytorch-lightning (>=0.10.0 <=1.5.9)

pytorch-lightning PYPI version =0.10.0, =0.2.2, =0.1.1, =0.3.2b20220222, =0.3.2b20220222, =0.0.1, =0.0.7, =3.0.0, =3.3.0 and more Source cves: CVE-2022-0845 Source advisory: OSV:PYSEC-2022-181...

10CVSS7.1AI score0.00965EPSS
Exploits1
CVE
CVE
added 2022/03/05 9:25 p.m.158 views

CVE-2022-0845

CVE-2022-0845 affects PyTorch Lightning (repository pytorchlightning/pytorch-lightning) and is a Code Injection vulnerability present in releases prior to 1.6.0. Public descriptions indicate an injection path enabling code execution and, in some sources, exploitation of trainer configuration (e.g...

10CVSS8.6AI score0.00965EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder