4 matches found
CVE-2023-43654
CVE-2023-43654 affects PyTorch TorchServe: default configuration allows input validation bypass, enabling SSRF via remote HTTP downloads and writing files to disk. Affected versions are 0.1.0 through 0.8.1; upgrading to TorchServe 0.8.2 mitigates the issue as the default behavior was changed to w...
CVE-2024-35199
CVE-2024-35199 concerns TorchServe where two gRPC ports (7070, 7071) were bound to all interfaces by default, not localhost, potentially exposing the service. The issue affects TorchServe in affected versions; the root cause is incorrect binding configuration, enabling network exposure. The advis...
CVE-2023-48299
CVE-2023-48299 (TorchServe ZipSlip) affects TorchServe versions 0.1.0 through 0.9.0 via the model/workflow management API, where uploading archives could cause files to be extracted to any location within process permissions. The underlying issue is unvalidated ZIP file paths, enabling potential ...
CVE-2024-35198
TorchServe contains a path-traversal style bypass in allowed_urls checking: URLs containing ".." can appear to pass validation, allowing a file to be downloaded into the model store and later referenced without a URL, effectively bypassing the security check. Affected component: TorchServeroot ca...