Lucene search
K

6 matches found

vulnersOsv
vulnersOsv
added 2023/10/13 7:25 p.m.3 views

vantage6-node (>=0.0.0 <=4.0.1rc2), vantage6-server (>=0.0.0 <=4.0.1rc2) potentially affected by CVE-2023-23930 via vantage6 (>=0.0.0 <=4.0.1rc2)

vantage6 PYPI version =0.0.0, =0.0.0, =0.0.0, =4.0.1rc2 Source cves: CVE-2023-23930 Source advisory: OSV:GHSA-5M22-CFQ9-86X6...

7.2CVSS7AI score0.00892EPSS
Exploits1
Circl
Circl
added 2023/10/11 10:17 p.m.7 views

CVE-2023-23930

creationtimestamp| type| source ---|---|--- 2023-10-11 22:17:38+00:00| seen| https://t.me/cibsecurity/72139...

7.2CVSS6.9AI score0.00892EPSS
Exploits1References1
NVD
NVD
added 2023/10/11 6:15 p.m.36 views

CVE-2023-23930

vantage6 is privacy preserving federated learning infrastructure. Versions prior to 4.0.0 use pickle, which has known security issue, as a default serialization module but that has known security issues. All users of vantage6 that post tasks with the default serialization are affected. Version...

7.2CVSS6AI score0.00892EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/10/11 6:15 p.m.2 views

vantage6-node (>=0.0.0 <=4.0.1rc2), vantage6-server (>=0.0.0 <=4.0.1rc2) potentially affected by CVE-2023-23930 via vantage6 (>=0.0.0 <=4.0.1rc2)

vantage6 PYPI version =0.0.0, =0.0.0, =0.0.0, =4.0.1rc2 Source cves: CVE-2023-23930 Source advisory: OSV:PYSEC-2023-196...

7.2CVSS7AI score0.00892EPSS
Exploits1
Cvelist
Cvelist
added 2023/10/11 5:39 p.m.40 views

CVE-2023-23930 vantage6's Pickle serialization is insecure

vantage6 is privacy preserving federated learning infrastructure. Versions prior to 4.0.0 use pickle, which has known security issue, as a default serialization module but that has known security issues. All users of vantage6 that post tasks with the default serialization are affected. Version...

5.5CVSS7.1AI score0.00892EPSS
Exploits1References4
CVE
CVE
added 2023/10/11 5:39 p.m.109 views

CVE-2023-23930

The CVE-2023-23930 entry concerns vantage6, a privacy-preserving federated learning platform. Versions before 4.0.0 default to Python pickle for serialization, which has known security issues; all users posting tasks with the default serialization are affected. A patch exists in version 4.0.0 tha...

7.2CVSS6.1AI score0.00892EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder