flair 安全漏洞

Flair is a very simple and advanced NLP framework developed by Flair OpenSource. There are security vulnerabilities in Flair versions 0.4.1 onwards. These vulnerabilities stem from the LanguageModel class’s ability to deserialize untrusted data, which may allow arbitrary code to be executed when...

EUVD-2024-3009

Malicious code in bioql PyPI...

abraham3k (>=1.3.8 <=1.5.3), accutuning-helpers (>=1.0.32 <=1.0.33) +76 more potentially affected by CVE-2024-10073 via flair (>=0.10.0 <=0.9.0)

flair PYPI version =0.10.0, =1.3.8, =1.0.32, =0.0.1, =0.1.0, =0.0.6, =0.1.20, =0.1.0, =0.1.0, =0.0.1.1, =0.2.4, =0.1.1, =0.1.3 and more Source cves: CVE-2024-10073 Source advisory: SNYK:PYTHON-FLAIR-8230414...