3 matches found
basecamper (>=0.1.1.dev1 <=0.10.9), fedsim (>=0.2.0 <=0.9.0) +5 more potentially affected by CVE-2024-9365 via polyaxon (>=1.1.7.post4 <=2.9.4)
polyaxon PYPI version =1.1.7.post4, =0.1.1.dev1, =0.2.0, =0.0.1, =0.0.0, =0.2.1, =0.1.0b5, =0.1.2 Source cves: CVE-2024-9365 Source advisory: SNYK:PYTHON-POLYAXON-9584622...
CVE-2024-9365
A Cross-Site Request Forgery CSRF vulnerability in polyaxon/polyaxon v2.4.0 allows attackers to perform unauthorized actions in the context of the victim's browser. This includes creating projects, model versions, and artifact versions, or changing settings. The impact of this vulnerability...
CVE-2024-9365 Cross-Site Request Forgery (CSRF) in polyaxon/polyaxon
A Cross-Site Request Forgery CSRF vulnerability in polyaxon/polyaxon v2.4.0 allows attackers to perform unauthorized actions in the context of the victim's browser. This includes creating projects, model versions, and artifact versions, or changing settings. The impact of this vulnerability...