2 matches found
Security Bulletin: Maximo AI Service uses multiple third party dependencies which are vulnerable to multiple CVEs.
Summary Maximo AI Service uses mlflow-3.9.0rc0-py3-none-any.whl, bcprov-jdk18on-1.79.jar, mlflow-3.8.1-py3-none-any.whl and GitPython-3.1.44-py3-none-any.whl which are vulnerable to CVE-2026-0545, CVE-2025-14813, CVE-2026-0636, CVE-2026, CVE-2025-15031, CVE-2025-15036, CVE-2025, CVE-2026-42215,...
CVE-2026-42284
creationtimestamp| type| source ---|---|--- 2026-04-22 02:45:11+00:00| published-proof-of-concept| https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485 2026-05-07 19:53:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlbylh62rw2e...