Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-20218

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00281EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-6837

Malicious code in bioql PyPI...

5.9CVSS5.8AI score0.00247EPSS
Exploits0References3
OSV
OSV
added 2025/07/07 12:30 p.m.5 views

GHSA-P7J4-JWJF-5X9W LlamaIndex vulnerability in ArxivReader class can cause MD5 hash collisions

A vulnerability in the ArxivReader class of the run-llama/llamaindex repository allows for MD5 hash collisions when generating filenames for downloaded papers. This can lead to data loss as papers with identical titles but different contents may overwrite each other, preventing some papers from...

5.3CVSS5AI score0.00281EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/07/07 12:30 p.m.12 views

LlamaIndex vulnerability in ArxivReader class can cause MD5 hash collisions

A vulnerability in the ArxivReader class of the run-llama/llamaindex repository allows for MD5 hash collisions when generating filenames for downloaded papers. This can lead to data loss as papers with identical titles but different contents may overwrite each other, preventing some papers from...

5.3CVSS5AI score0.00281EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/07/07 10:15 a.m.7 views

CVE-2025-3044

A vulnerability in the ArxivReader class of the run-llama/llamaindex repository, versions up to v0.12.22.post1, allows for MD5 hash collisions when generating filenames for downloaded papers. This can lead to data loss as papers with identical titles but different contents may overwrite each othe...

5.3CVSS0.00281EPSS
Exploits1References2
CVE
CVE
added 2025/07/07 9:54 a.m.21 views

CVE-2025-3044

The CVE-2025-3044 affects the ArxivReader class in the llama_index project. Versions up to v0.12.22.post1 are vulnerable to MD5 hash collisions when generating filenames for downloaded papers, which can cause papers with identical titles but different contents to overwrite each other, leading to ...

5.3CVSS5.1AI score0.00281EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/07 12:0 a.m.8 views

PT-2025-28148

Name of the Vulnerable Software and Affected Versions: llama index versions up to v0.12.22.post1 Description: A vulnerability in the ArxivReader class allows for MD5 hash collisions when generating filenames for downloaded papers. This can lead to data loss as papers with identical titles but...

5.3CVSS6AI score0.00281EPSS
Exploits1References14
Veracode
Veracode
added 2025/03/28 10:50 a.m.20 views

MD5 Hash Collisions

sagemaker is vulnerable to MD5 Hash Collisions. The vulnerability is due to weak hashing in workflow identification due to the reuse of results from different configurations that produce the same MD5 hash, potentially leading to unintended workflow replacements and integrity issues...

5.9CVSS7AI score0.00247EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/22 1:24 p.m.23 views

CVE-2025-0508

A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions in all versions. This can lead to workflows being inadvertently replaced due to the reuse of results from different configurations that produce the same MD5 hash. This...

5.9CVSS7.2AI score0.00247EPSS
Exploits0References1
OSV
OSV
added 2025/03/20 12:32 p.m.8 views

GHSA-32G6-MG92-GHM2 SageMaker Workflow component allows possibility of MD5 hash collisions

A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the possibility of MD5 hash collisions in all versions. This can lead to workflows being inadvertently replaced due to the reuse of results from different configurations that produce the same MD5 hash. This...

5.9CVSS7.1AI score0.00247EPSS
Exploits0References4
CVE
CVE
added 2025/03/20 10:11 a.m.58 views

CVE-2025-0508

CVE-2025-0508 affects the SageMaker Workflow component in aws/sagemaker-python-sdk, with MD5 hash collisions across all versions leading to potential workflow replacements and integrity issues in pipelines. The issue is documented across multiple feeds (including Red Hat, OSV, circl, and CVE list...

5.9CVSS5.8AI score0.00247EPSS
Exploits0References2
Rows per page
Query Builder