Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/17 12:0 a.m.6 views

Microsoft Azure Promptflow Python Library promptflow-tools < 1.6.0 RCE

The detected version of Microsoft Azure Promptflow python package, promptflow-tools, is prior to version 1.6.0. It is, therefore, affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to bypass authentication and execute unauthorized arbitrary...

6.5CVSS8.9AI score0.00492EPSS
Exploits0References3
Snyk
Snyk
added 2025/03/11 6:32 p.m.3 views

Improper Isolation or Compartmentalization

Overview promptflow-tools is a Prompt flow built-in tools Affected versions of this package are vulnerable to Improper Isolation or Compartmentalization due to improper isolation or compartmentalization in the handling of Jinja templates. Remediation Upgrade promptflow-tools to version 1.6.0 or...

6.9CVSS6.9AI score0.00492EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/03/11 6:32 p.m.3 views

promptflow-image-bundle (=0.1.0) potentially affected by CVE-2025-24986 via promptflow-tools (=0.1.0b12)

promptflow-tools PYPI version =0.1.0b12 is affected by a known vulnerability. The following packages have a transitive dependency on promptflow-tools and may be impacted: - promptflow-image-bundle =0.1.0 Source cves: CVE-2025-24986 Source advisory: OSV:GHSA-GPRR-V9F2-PX3C...

6.5CVSS7.2AI score0.00492EPSS
Exploits0
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.4 views

Microsoft Azure 安全漏洞

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from Microsoft USA. A security vulnerability exists in Microsoft Azure. An attacker exploiting this vulnerability could remotely execute code. The following products and versions are affected: Azure promptflow-core,Azu...

6.5CVSS8.2AI score0.00492EPSS
Exploits0References2
Rows per page
Query Builder