Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2026/01/02 7:34 a.m.16 views

CVE-2025-11157

A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in the Kubernetes materializer job located at feast/sdk/python/feast/infra/computeengines/kubernetes/main.py. The vulnerability arises from the use of yaml.load..., Loader=yaml.Loader to...

7.8CVSS8.3AI score0.00264EPSS
Exploits0References1
cve
cve
added 2026/01/01 7:3 a.m.40 views

CVE-2025-11157

CVE-2025-11157 is a high-severity remote code execution flaw in feast-dev/feast v0.53.0, due to unsafe YAML deserialization in the Kubernetes materializer (feast/sdk/python/feast/infra/compute_engines/kubernetes/main.py) where yaml.load(..., Loader=yaml.Loader) processes /var/feast/feature_store....

7.8CVSS8.2AI score0.00264EPSS
Exploits0References6
osv
osv
added 2026/01/01 7:3 a.m.6 views

CVE-2025-11157 Arbitrary Code Execution in feast-dev/feast

A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in the Kubernetes materializer job located at feast/sdk/python/feast/infra/computeengines/kubernetes/main.py. The vulnerability arises from the use of yaml.load..., Loader=yaml.Loader to...

7.8CVSS6.8AI score0.00264EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/01/01 12:0 a.m.16 views

PT-2026-1002

Name of the Vulnerable Software and Affected Versions feast-dev/feast version 0.53.0 Description A high-severity remote code execution issue exists in the Kubernetes materializer job located at feast/sdk/python/feast/infra/compute engines/kubernetes/main.py. The problem stems from using...

7.8CVSS8.1AI score0.00264EPSS
Exploits0References19
Rows per page
Query Builder