EUVD-2021-25569

Malware in sbrugna...

Nvidia Caffe Data Forgery Issue Vulnerability

Nvidia Caffe is a deep learning framework from Nvidia Corporation. versions prior to Nvidia Caffe 0.17.4 are vulnerable to a data forgery issue, which can be exploited by attackers to distribute malicious files to pypi.org, causing users to install the files in NVCaffe...

CVE-2021-39158

NVCaffe's python required dependencies list used to contain gfortranversion prior to 0.17.4, entry which does not exist in the repository pypi.org. An attacker could potentially have posted malicious files to pypi.org causing a user to install it within NVCaffe...

CVE-2021-39158

NVCaffe/Nvidia Caffe vulnerable in versions prior to 0.17.4 due to a faulty Python dependencies list that allowed a malicious PyPI file to be installed. The issue arises from a gfortran dependency entry that does not exist on PyPI, enabling potential data forgery if a malicious package is posted ...

CVE-2021-39158 Dependency injection in NVCaffe

NVCaffe's python required dependencies list used to contain gfortranversion prior to 0.17.4, entry which does not exist in the repository pypi.org. An attacker could potentially have posted malicious files to pypi.org causing a user to install it within NVCaffe...

Nvidia Caffe 数据伪造问题漏洞

Nvidia Caffe is a deep learning framework from Nvidia Corporation. versions prior to Nvidia Caffe 0.17.4 are vulnerable to a data forgery issue, which can be exploited by attackers to distribute malicious files to pypi.org, causing users to install the files in NVCaffe...