Lucene search
K

351 matches found

OSV
OSV
added 2024/06/04 12:31 p.m.6 views

GHSA-43C4-9QGJ-X742 MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.1AI score0.00618EPSS
Exploits1References3
OSV
OSV
added 2024/06/04 12:31 p.m.4 views

GHSA-7P8J-QV6X-F4G4 MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.23.0 or newer, enabling a maliciously uploaded LightGBM scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6.1AI score0.00618EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2024/06/04 12:31 p.m.19 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/04 12:31 p.m.21 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/04 12:31 p.m.23 views

MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.23.0 or newer, enabling a maliciously uploaded LightGBM scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/06/04 12:31 p.m.26 views

GHSA-76CG-CFHX-373F MLFlow unsafe deserialization

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS7.4AI score0.00618EPSS
Exploits1References3
NVD
NVD
added 2024/06/04 12:15 p.m.24 views

CVE-2024-37056

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.23.0 or newer, enabling a maliciously uploaded LightGBM scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
NVD
NVD
added 2024/06/04 12:15 p.m.30 views

CVE-2024-37052

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
NVD
NVD
added 2024/06/04 12:15 p.m.31 views

CVE-2024-37053

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
OSV
OSV
added 2024/06/04 12:15 p.m.5 views

CVE-2024-37053

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6AI score0.00618EPSS
Exploits1References1
OSV
OSV
added 2024/06/04 12:15 p.m.5 views

CVE-2024-37052

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS6AI score0.00618EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/04 12:1 p.m.24 views

CVE-2024-37056

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.23.0 or newer, enabling a maliciously uploaded LightGBM scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/04 12:0 p.m.22 views

CVE-2024-37053

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/04 12:0 p.m.39 views

CVE-2024-37053

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/04 11:59 a.m.39 views

CVE-2024-37052

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/04 11:59 a.m.16 views

CVE-2024-37052

Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with...

8.8CVSS8.8AI score0.00618EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2024/05/24 7:14 a.m.327 views

Exploit for CVE-2023-5089

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

5.3CVSS5.5AI score0.02235EPSS
Exploits3
OSV
OSV
added 2024/03/27 2:15 p.m.5 views

CVE-2023-34020

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash.This issue affects Uncanny Toolkit for LearnDash: from n/a through 3.6.4.3...

6.1CVSS7.3AI score0.00963EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/02/14 12:13 p.m.3 views

learn-with.com Cross Site Scripting vulnerability OBB-3852608

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.6 views

Xantech WIC1200 Cross-Site Scripting Vulnerability

The Xantech WIC1200 is a Web Intelligent Controller from Xantech. A cross-site scripting vulnerability exists in the Xantech WIC1200 version 1.1, which originates from the fact that an authenticated user can store a malicious JavaScript load in the device model parameter via...

5.5CVSS6AI score0.00293EPSS
Exploits0References2
Rows per page
Query Builder