Lucene search
K

4 matches found

OSV
OSV
added 2024/09/12 3:33 p.m.9 views

GHSA-4FGP-7VVM-M4JF Refuel Autolab Eval Injection vulnerability

An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its multilabel classification tasks handle provided CSV files. If a user creates a multilabel classification task using a maliciously crafted CSV file containing Python...

8.6CVSS7.8AI score0.00349EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/09/12 3:33 p.m.24 views

Refuel Autolab Eval Injection vulnerability

An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its classification tasks handle provided CSV files. If a victim user creates a classification task using a maliciously crafted CSV file containing Python code, the code...

7.8CVSS7.6AI score0.00349EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2024/09/12 3:33 p.m.15 views

Refuel Autolab Eval Injection vulnerability

An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its multilabel classification tasks handle provided CSV files. If a user creates a multilabel classification task using a maliciously crafted CSV file containing Python...

7.8CVSS7.6AI score0.00349EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/09/12 3:33 p.m.18 views

GHSA-G2M8-F3X2-QPRW Refuel Autolab Eval Injection vulnerability

An arbitrary code execution vulnerability exists in versions 0.0.8 and newer of the Refuel Autolabel library because of the way its classification tasks handle provided CSV files. If a victim user creates a classification task using a maliciously crafted CSV file containing Python code, the code...

8.6CVSS7.8AI score0.00349EPSS
Exploits0References4
Rows per page
Query Builder