CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-1966

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00399EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-40349

Malicious code in bioql PyPI...

8.1CVSS7.8AI score0.01877EPSS

Exploits0References4

Packet Storm News•added 2025/08/02 12:0 a.m.•1 views

Leveraging Machine Learning for Botnet Attack Detection in Edge-Computing Assisted IoT Networks

The increase of IoT devices, driven by advancements in hardware technologies, has led to widespread deployment in large-scale networks that process massive amounts of data daily. However, the reliance on Edge Computing to manage these devices has introduced significant security vulnerabilities, a...

6.9AI score

Exploits0

Packet Storm News•added 2025/06/18 12:0 a.m.•2 views

Efficient Malware Detection with Optimized Learning on High-Dimensional Features

Malware detection using machine learning requires feature extraction from binary files, as models cannot process raw binaries directly. A common approach involves using LIEF for raw feature extraction and the EMBER vectorizer to generate 2381-dimensional feature vectors. However, the high...

6.8AI score

Exploits0

IBM Security Bulletins•added 2025/04/14 10:25 a.m.•24 views

Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.

Summary Security Bulletin: IBM Maximo Application Suite - Predict Component vulnerable to Microsoft LightGBM could allow a remote attacker to execute arbitrary code on the system.. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

8.1CVSS7.6AI score0.01877EPSS

Exploits0Affected Software1

OSV•added 2025/02/05 10:4 p.m.•1 views

MAL-2025-191781 Malicious code in lightgboost (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 03aea882aa08832e53ccfb267fe4b95c9ea4f24ea51ceeaaa4a85557e67ce15b Packages are designed to collect basic info about the user when importing them, and have no other purpose. While they claim to do so, some packages from the sa...

7AI score

Exploits0References1

Tenable Nessus•added 2024/11/21 12:0 a.m.•10 views

LightGBM < 4.6.0 RCE

The version of the LightGBM library installed on the remote host is prior to 4.6.0. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 8090...

8.1CVSS6.4AI score0.01877EPSS

Exploits0References2

CNVD•added 2024/11/15 12:0 a.m.•9 views

Microsoft LightGBM Remote Code Execution Vulnerability

Microsoft LightGBM is a gradient boosting framework using a tree-based learning algorithm from Microsoft USA. A remote code execution vulnerability exists in Microsoft LightGBM. An attacker could exploit this vulnerability to execute arbitrary code on a system...

8.1CVSS8AI score0.01877EPSS

Exploits0References1

vulnersOsv•added 2024/11/12 6:44 p.m.•0 views

ale-uy (>=1.1.2 <=1.5.0), autocate (=0.1.0) +62 more potentially affected by CVE-2024-43598 via lightgbm (>=4.0.0 <=4.5.0)

lightgbm PYPI version =4.0.0, =1.1.2, =1.0.0, =1.0.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =1.0.1, =1.0.2 - cs-mini-2024z-automl =0.1.0 - delphina =0.0.0 and more Source cves: CVE-2024-43598 Source advisory: SNYK:PYTHON-LIGHTGBM-8516056...

8.1CVSS5.8AI score0.01877EPSS

Exploits0

Snyk•added 2024/11/12 6:44 p.m.•2 views

Out-of-bounds Write

Overview lightgbm is a gradient boosting framework that uses tree based learning algorithms. Affected versions of this package are vulnerable to Out-of-bounds Write in linkerssocket.cpp, used during initialization of distributed training. An attacker can exploit a race condition to connect to a...

9.2CVSS6.9AI score0.01877EPSS

Exploits0References2

vulnersOsv•added 2024/11/12 6:30 p.m.•0 views

accutuning-helpers (>=1.0.32 <=1.1.0), al-for-design (=0.0.1) +250 more potentially affected by CVE-2024-43598 via lightgbm (>=2.0.12 <=4.5.0)

lightgbm PYPI version =2.0.12, =1.0.32, =1.1.2, =0.1.0, =0.10.0.dev0, =0.3.8.2, =0.2.7, =0.3.2, =0.0.1, =1.0.71, =2.9.0, =0.1.0, =0.1.1 and more Source cves: CVE-2024-43598 Source advisory: OSV:GHSA-2586-F3P4-HQ84...

8.1CVSS5.8AI score0.01877EPSS

Exploits0