Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2025/03/20 12:32 p.m.12 views

llm-toys (=0.1.1), tcbench (>=0.0.20 <=0.0.22) +1 more potentially affected by CVE-2024-6483 via aim (>=3.17.4 <=3.19.3)

aim PYPI version =3.17.4, =0.0.20, =0.1.0, =0.5.6 Source cves: CVE-2024-6483 Source advisory: OSV:GHSA-P6X3-V6G3-7557...

5.3CVSS6AI score0.00814EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2025/03/20 10:9 a.m.8 views

CVE-2024-6483 Arbitrary File/Directory Deletion in aimhubio/aim

A vulnerability in the runs/delete-batch endpoint of aimhubio/aim version 3.19.3 allows for arbitrary file or directory deletion through path traversal. The endpoint does not mitigate path traversal when handling user-specified run-names, which are used to specify log/metadata files for deletion...

5.3CVSS5.5AI score0.00814EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/20 10:9 a.m.9 views

CVE-2024-6483 Arbitrary File/Directory Deletion in aimhubio/aim

A vulnerability in the runs/delete-batch endpoint of aimhubio/aim version 3.19.3 allows for arbitrary file or directory deletion through path traversal. The endpoint does not mitigate path traversal when handling user-specified run-names, which are used to specify log/metadata files for deletion...

5.3CVSS0.00814EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:9 a.m.56 views

CVE-2024-6483

The CVE-2024-6483 entry concerns aimhubio/aim v3.19.3 with a path traversal flaw in the runs/delete-batch endpoint. The issue allows arbitrary file/directory deletion via user-specified run-names, risking denial of service or data loss. Reports from multiple sources (Red Hat, NVD, OSV, GHSA, Snyk...

5.3CVSS5.5AI score0.00814EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder