10 matches found
Advisory ROSA-SA-2025-2969
software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-3 affected versions ghostscript-9.56.1-3 CVE-ID: CVE-2024-33870 BDU-ID: 2024-05063 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Ghostscript document processing, conversion, and generation software suite...
The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing lies in errors in the processing of the relative path to the catalog. This allows attackers to execute arbitrary code.
The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow attackers to execute arbitrary code...
The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in errors in processing the relative path to the directory. This allows attackers to write backup files to arbitrary directories.
The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of JetBrains TeamCity is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a malicious actor to write backup files to arbitrary directories...
ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths
A flaw was found in Ghostscript. When the gpvalidatepathlen function validates a path, it distinguishes between absolute and relative paths. In the case of relative paths, it will check the path with and without the current-directory-prefix "foo" and "./foo". This does not take into account paths...
The vulnerability of Ollama’s system for running and managing large language models lies in errors in processing the relative path to the catalog. This allows a malicious actor to gain access to arbitrary files within the vulnerable system.
The vulnerability of Ollama’s system for running and managing large language models is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow a malicious actor to gain access to arbitrary files within the vulnerable system...
The software for deploying and executing AI models, NVIDIA Triton Inference Server (previously TensorRT Inference Server), has vulnerabilities that allow attackers to gain unauthorized access to protected information, enhance their privileges, execute arbitrary code, or cause service failures.
The vulnerability of the NVIDIA Triton Inference Server previously known as TensorRT Inference Server software for deploying and executing artificial intelligence models is related to errors in processing the relative path to the catalog during model loading. Exploiting this vulnerability can all...
PT-2023-8256 · Nvidia · Nvidia Triton Inference Server
Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: The issue is related to errors in processing relative paths to directories during model loading in NVIDIA Triton Inference Server. This can allow a remote attacker to...
The vulnerability of the eXchange Layer component in the application development environment for programmable logic controllers ISaGRAF Runtime Rockwell Automation allows a hacker to execute arbitrary code.
The vulnerability of the eXchange Layer component in the application development environment for ISaGRAF Runtime Rockwell Automation relates to errors in processing the relative path to the restricted-access directory. Exploiting this vulnerability may allow a remote attacker to execute arbitrary...
The vulnerability in the implementation of the UserFirmwareRequestHandler class in the microprogramming software for sensors for monitoring the Keysight N6841A, as well as the microprogramming software for geolocation servers from Keysight, N6854A, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the UserFirmwareRequestHandler class implementation in the microprogramming software for sensors monitoring the Keysight N6841A spectrum, as well as the microprogramming software for geolocation servers from Keysight, the N6854A, is related to errors in processing the relativ...
The vulnerability of the TwinCAT OPC UA Server lies in errors in processing the relative path to the directory. This allows attackers to create and delete arbitrary files within the system.
The vulnerability of the TwinCAT OPC UA Server is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a malicious actor to create and delete arbitrary files within the system...