4 matches found
Microsoft Azure Promptflow Python Library promptflow-tools < 1.6.0 RCE
The detected version of Microsoft Azure Promptflow python package, promptflow-tools, is prior to version 1.6.0. It is, therefore, affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and execute unauthorized arbitrary...
promptflow (>=1.10.0 <=1.17.1), ultraflow (>=0.1.1 <=0.2.1) potentially affected by CVE-2025-24986 via promptflow-core (>=1.10.0 <=1.17.1)
promptflow-core PYPI version =1.10.0, =1.10.0, =0.1.1, =0.2.1 Source cves: CVE-2025-24986 Source advisory: OSV:GHSA-GPRR-V9F2-PX3C...
CVE-2025-24986 Azure Promptflow Remote Code Execution Vulnerability
...
CVE-2025-24986
creationtimestamp| type| source ---|---|--- 2025-03-11 16:39:36+00:00| seen| https://www.thezdi.com/blog/2025/3/11/the-march-2025-security-update-review 2025-03-11 18:42:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7213...