Lucene search
+L

7 matches found

osv
osv
added 2026/06/29 11:50 a.m.7 views

PYSEC-2026-356 imgaug contains an insecure deserialization vulnerability in BackgroundAugmenter class within multicore.py module

The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. The class uses Python's pickle module to deserialize data received via a multiprocessing queue in the augmentimagesworker method without any safety...

9.8CVSS6.6AI score0.00472EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/05/15 1:57 a.m.11 views

CVE-2026-31235

The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. The class uses Python's pickle module to deserialize data received via a multiprocessing queue in the augmentimagesworker method without any safety...

9.8CVSS6.5AI score0.00472EPSS
Exploits0References1
osv
osv
added 2026/05/12 6:30 p.m.6 views

GHSA-G82G-J283-HJ97 imgaug contains an insecure deserialization vulnerability in BackgroundAugmenter class within multicore.py module

The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. The class uses Python's pickle module to deserialize data received via a multiprocessing queue in the augmentimagesworker method without any safety...

9.8CVSS6.5AI score0.00472EPSS
Exploits0References3
nvd
nvd
added 2026/05/12 6:16 p.m.11 views

CVE-2026-31235

The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. The class uses Python's pickle module to deserialize data received via a multiprocessing queue in the augmentimagesworker method without any safety...

9.8CVSS0.00472EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/12 12:0 a.m.16 views

PT-2026-40122

Name of the Vulnerable Software and Affected Versions imgaug versions prior to 0.4.0 Description Insecure deserialization occurs in the BackgroundAugmenter class within the multicore.py module. The augment images worker function uses Python's pickle module to deserialize data from a multiprocessi...

9.8CVSS6.4AI score0.00472EPSS
Exploits0References7
cve
cve
added 2026/05/12 12:0 a.m.41 views

CVE-2026-31235

The CVE-2026-31235 issue affects the imgaug library up to version 0.4.0, specifically the BackgroundAugmenter class in multicore.py. The vulnerability arises from deserializing data with Python pickle via a multiprocessing queue in the _augment_images_worker method without safety checks. An attac...

9.8CVSS6.5AI score0.00472EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/12 12:0 a.m.36 views

CVE-2026-31235

The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. The class uses Python's pickle module to deserialize data received via a multiprocessing queue in the augmentimagesworker method without any safety...

0.00472EPSS
Exploits0References2
Rows per page
Query Builder