Lucene search
K

6 matches found

vulnersOsv
vulnersOsv
added 2023/12/12 6:30 a.m.8 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +339 more potentially affected by CVE-2023-6709 via mlflow (>=0.8.2 <=2.9.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6709 Source advisory: OSV:GHSA-CXFR-5Q3R-2RC2...

10CVSS7.2AI score0.0093EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/12/12 4:15 a.m.5 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +339 more potentially affected by CVE-2023-6709 via mlflow (>=0.8.2 <=2.9.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2023-6709 Source advisory: OSV:PYSEC-2023-281...

10CVSS7.2AI score0.0093EPSS
Exploits1
OSV
OSV
added 2023/12/12 4:5 a.m.18 views

CVE-2023-6709 Improper Neutralization of Special Elements Used in a Template Engine in mlflow/mlflow

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2...

10CVSS7.2AI score0.0093EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/12/12 4:5 a.m.20 views

CVE-2023-6709 Improper Neutralization of Special Elements Used in a Template Engine in mlflow/mlflow

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2...

10CVSS8.9AI score0.0093EPSS
Exploits1References2
CVE
CVE
added 2023/12/12 4:5 a.m.52 views

CVE-2023-6709

CVE-2023-6709 affects mlflow/mlflow up to version 2.9.1 (prior to 2.9.2). The issue is improper neutralization of special elements used in a template engine (Jinja2), enabling template injection with potential arbitrary code execution. Affected component: mlflow/mlflow templates; root cause: inse...

10CVSS8.7AI score0.0093EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/12 4:5 a.m.11 views

CVE-2023-6709 Improper Neutralization of Special Elements Used in a Template Engine in mlflow/mlflow

Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2...

10CVSS7.1AI score0.0093EPSS
Exploits1References2
Rows per page
Query Builder