Pytorch Lightning@* Security Vulnerabilities and Issues — Pytorch Lightning@* CVE List

Lucene search

LightningaiPytorch Lightning*

4 matches found

CVE•added 2022/03/05 10:15 p.m.•138 views

CVE-2022-0845

Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0.

10CVSS8.6AI score0.00134EPSS

CVE•added 2024/06/27 7:15 p.m.•81 views

CVE-2024-5980

A vulnerability in the /v1/runs API endpoint of lightning-ai/pytorch-lightning v2.2.4 allows attackers to exploit path traversal when extracting tar.gz files. When the LightningApp is running with the plugin_server, attackers can deploy malicious tar.gz plugins that embed arbitrary files with path ...

9.8CVSS9.5AI score0.05092EPSS

CVE•added 2021/12/23 6:15 p.m.•71 views

CVE-2021-4118

pytorch-lightning is vulnerable to Deserialization of Untrusted Data

7.8CVSS7.5AI score0.00258EPSS

CVE•added 2024/06/06 6:15 p.m.•44 views

CVE-2024-5452

A remote code execution (RCE) vulnerability exists in the lightning-ai/pytorch-lightning library version 2.2.1 due to improper handling of deserialized user input and mismanagement of dunder attributes by the deepdiff library. The library uses deepdiff.Delta objects to modify application state base...

9.8CVSS9.9AI score0.39909EPSS

Web