8 matches found
EUVD-2021-29524
Malicious code in bioql PyPI...
CVE-2021-42556
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...
CVE-2021-42556
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...
CVE-2021-42556
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...
Directory traversal
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...
CVE-2021-42556
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...
CVE-2021-42556
CVE-2021-42556 affects Rasa X (before 0.42.4). The issue is a directory traversal during the extraction of a trained model archive, enabling an attacker to gain arbitrary write access within specific directories by crafting the archive file. This is documented across multiple sources (NVD entry a...
Rasa 路径遍历漏洞
Rasa is an open source machine learning framework for automating text- and speech-based conversations. Rasa X A security vulnerability exists in Rasa X before 0.42.4 that allows traversing directories during archive extraction. An attacker can exploit the vulnerability to have arbitrary write...