CVE-2024-9365 Cross-Site Request Forgery (CSRF) in polyaxon/polyaxon

A Cross-Site Request Forgery CSRF vulnerability in polyaxon/polyaxon v2.4.0 allows attackers to perform unauthorized actions in the context of the victim's browser. This includes creating projects, model versions, and artifact versions, or changing settings. The impact of this vulnerability...

CVE-2024-9365

CVE-2024-9365 describes a Cross-Site Request Forgery (CSRF) in polyaxon/polyaxon v2.4.0 . The vulnerability enables attackers to perform unauthorized actions in the victim’s browser context, including creating projects, model versions, and artifact versions, or changing settings, with potential d...

CVE-2024-9362 Directory Traversal in polyaxon/polyaxon

An unauthenticated directory traversal vulnerability exists in Polyaxon, affecting the latest version. This vulnerability allows an attacker to retrieve directory information and file contents from the server without proper authorization, leading to sensitive information disclosure. The issue...

CVE-2024-9362

CVE-2024-9362 describes an unauthenticated directory traversal vulnerability in Polyaxon. Multiple connected sources confirm an information-disclosure style flaw that allows access to server directories (e.g., /etc) and arbitrary file contents via vulnerable endpoints. The Snyk entry specifies af...

CVE-2024-9363 Unauthorized File Deletion in polyaxon/polyaxon

An unauthorized file deletion vulnerability exists in the latest version of the Polyaxon platform, which can lead to denial of service by terminating critical containers. An attacker can delete important files within the containers, such as polyaxon.sock, causing the API container to exit...

Polyaxon Container Escape Vulnerability

Polyaxon is an open source platform designed to simplify the lifecycle management of machine learning and deep learning projects. Polyaxon suffers from a container escape vulnerability that can be exploited by attackers to compromise the confidentiality, availability, and integrity of the system...