Lucene search
K

14 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/12/29 12:33 p.m.8 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses scikit_learn-1.3.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl which is vulnerable to CVE-2024-5206.

Summary IBM Maximo Application Suite - Monitor Component uses scikitlearn-1.3.0-cp39-cp39-manylinux217x8664.manylinux2014x8664.whl which is vulnerable to CVE-2024-5206. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2024-5206 DESCRIPTION: A...

4.7CVSS4.6AI score0.00187EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.8 views

TencentOS Server 4: python-scikit-learn (TSSA-2024:0487)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0487 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

4.7CVSS5.6AI score0.00187EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/14 7:56 p.m.10 views

Security Bulletin: Vulnerability in scikit-learn affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in scikit-learn has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...

4.7CVSS6.3AI score0.00187EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 9:51 p.m.12 views

Security Bulletin: IBM Maximo Application Suite Predict Component uses CVE-2024-5206 (Medium) detected in scikit_learn-1.1.3-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl which is vulnerable to CVE-2024-5206

Summary IBM Maximo Application Suite Predict Component uses CVE-2024-5206 Medium detected in scikitlearn-1.1.3-cp39-cp39-manylinux217x8664.manylinux2014x8664.whl which is vulnerable to CVE-2024-5206. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability...

4.7CVSS5.9AI score0.00187EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/09 8:10 a.m.24 views

Security Bulletin: IBM Maximo Application Suite - AI Broker component usesscikit_learn-1.3.2-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl which is vulnerable to this CVE-2024-5206

Summary Security Bulletin: IBM Maximo Application Suite - AI Broker component usesscikitlearn-1.3.2-cp311-cp311-manylinux217x8664.manylinux2014x8664.whl which is vulnerable to this CVE-2024-5206. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

4.7CVSS4.8AI score0.00187EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/08 8:39 a.m.39 views

Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities

Summary QRadar Suite Software includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version. Vulnerability Details...

7.5CVSS8.6AI score0.00929EPSS
Exploits2Affected Software1
OSV
OSV
added 2024/06/21 11:8 a.m.4 views

OESA-2024-1745 python-scikit-learn security update

A Python module for machine learning built on top of SciPy Security Fixes: A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the...

4.7CVSS6.6AI score0.00187EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/06/15 12:0 a.m.12 views

openSUSE Security Advisory (SUSE-SU-2024:2029-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS5.3AI score0.00187EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.21 views

SUSE SLES15 / openSUSE 15 Security Update : python-scikit-learn (SUSE-SU-2024:2029-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:2029-1 advisory. -CVE-2024-5206: Fixed a possible sensitive data leak in TfidfVectorizer. bsc1226185 Tenable has extracted the preceding description block...

4.7CVSS5.7AI score0.00187EPSS
Exploits0References4
OSV
OSV
added 2024/06/13 3:13 p.m.10 views

SUSE-SU-2024:2029-1 Security update for python-scikit-learn

This update for python-scikit-learn fixes the following issues: -CVE-2024-5206: Fixed a possible sensitive data leak in TfidfVectorizer. bsc1226185...

4.7CVSS4.8AI score0.00187EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/06/12 12:48 a.m.28 views

CVE-2024-5206

A vulnerability was found in the scikit-learn package. Before version 1.4.1, post1 scikit-learn stores all tokens with "stopwords" attributes. This action may cause scikit-learn to expose sensitive data that will not be used in the model training, possibly leaking passwords and keys...

5.3CVSS6.8AI score0.00187EPSS
Exploits0References3
Wolfi
Wolfi
added 2024/06/06 7:16 p.m.114 views

CVE-2024-5206 vulnerabilities

Vulnerabilities for packages: kubeflow-katib, kubeflow-pipelines-visualization-server, py3-scikit-learn...

4.7CVSS6.3AI score0.00187EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/06/06 7:16 p.m.25 views

CVE-2024-5206

A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the unexpected storage of all tokens present in the training data within the stopwords...

4.7CVSS6.2AI score0.00187EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/06/06 6:28 p.m.17 views

CVE-2024-5206

A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, specifically in versions up to and including 1.4.1.post1, which was fixed in version 1.5.0. The vulnerability arises from the unexpected storage of all tokens present in the training data within the stopwords...

4.7CVSS6AI score0.00187EPSS
Exploits0
Rows per page
Query Builder