Computer Vision Annotation Tool Security Vulnerabilities and Issues — Computer Vision Annotation Tool CVE List

Lucene search

CvatComputer Vision Annotation Tool

7 matches found

CVE•added 2021/12/14 7:15 p.m.•1540 views

CVE-2021-45046

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context L...

9CVSS9.7AI score0.94358EPSS

CVE•added 2024/06/13 3:15 p.m.•73 views

CVE-2024-37164

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. CVAT allows users to supply custom endpoint URLs for cloud storages based on Amazon S3 and Azure Blob Storage. Starting in version 2.1.0 and prior to version 2.14.3, an attacker with a CVAT...

8.5CVSS7AI score0.00254EPSS

CVE•added 2024/09/30 3:15 p.m.•73 views

CVE-2024-47064

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If an attacker can trick a logged-in CVAT user into visiting a maliciously-constructed URL, they can initiate any API calls on that user's behalf. This gives the attacker temporary access t...

6.3CVSS6.2AI score0.00167EPSS

CVE•added 2024/06/13 3:15 p.m.•64 views

CVE-2024-37306

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. Starting in version 2.2.0 and prior to version 2.14.3, if an attacker can trick a logged-in CVAT user into visiting a malicious URL, they can initiate a dataset export or a backup from a pr...

7.1CVSS6.8AI score0.00244EPSS

CVE•added 2024/09/30 3:15 p.m.•64 views

CVE-2024-47063

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If a malicious CVAT user with permissions to either create a task, or edit an existing task can trick another logged-in user into visiting a maliciously-constructed URL, they can initiate a...

6.2CVSS6.2AI score0.00145EPSS

CVE•added 2024/09/10 3:15 p.m.•37 views

CVE-2024-45393

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with a CVAT account can access webhook delivery information for any webhook registered on the CVAT instance, including that of other users. For each delivery, this contains info...

6.4CVSS6.3AI score0.00094EPSS

CVE•added 2024/09/30 3:15 p.m.•34 views

CVE-2024-47172

Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with a CVAT account may retrieve certain information about any project, task, job or membership resource on the CVAT instance. The information exposed in this way is the same as...

5.4CVSS5.3AI score0.0008EPSS