Lucene search
Veracode Vulnerability DatabaseVERACODE:27963HistoryNov 23, 2020 - 5:08 a.m.
Denial Of Service (DoS)
2020-11-2305:08:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.002 Low
EPSS
Percentile
59.2%
sckit_learn is vulnerable to denial of service (DoS). The vulnerability exists through a SVM model with a large value in the _n_support array caused by svm_predict_values in svm.cpp in Libsvm v324.
| CPE | Name | Operator | Version |
|---|---|---|---|
| scikit-learn | le | 1.0 | |
| scikit-learn | le | 1.0 |
References
packetstormsecurity.com/files/160281/SciKit-Learn-0.23.2-Denial-Of-Service.html
seclists.org/fulldisclosure/2020/Nov/44
github.com/cjlin1/libsvm/blob/9a3a9708926dec87d382c43b203f2ca19c2d56a0/svm.cpp#L2501
github.com/scikit-learn/scikit-learn/commit/1bf13d567d3cd74854aa8343fd25b61dd768bb85
github.com/scikit-learn/scikit-learn/commit/dd3e3d8ef69228e81506ae12a52d92e2510b280e
github.com/scikit-learn/scikit-learn/issues/18891
github.com/scikit-learn/scikit-learn/pull/21336
security.gentoo.org/glsa/202301-03
Related
gentoo
gentoo
scikit-learn: Denial of Service
2023-01-11 00:00:00
ubuntucve
ubuntucve
CVE-2020-28975
2020-11-21 00:00:00
github
github
scikit-learn Denial of Service
2022-05-24 17:34:40
cvelist
cvelist
CVE-2020-28975
2020-11-21 00:00:00
ibm
ibm
packetstorm
packetstorm
SciKit-Learn 0.23.2 Denial Of Service
2020-12-01 00:00:00
zdt
zdt
SciKit-Learn 0.23.2 Denial Of Service Vulnerability
2020-12-01 00:00:00
prion
prion
Design/Logic Flaw
2020-11-21 21:15:00
nessus
nessus
GLSA-202301-03 : scikit-learn: Denial of Service
2023-01-11 00:00:00
osv
osv
PYSEC-2020-108
2020-11-21 21:15:00
scikit-learn Denial of Service
2022-05-24 17:34:40
cve
cve
CVE-2020-28975
2020-11-21 21:15:10
vulnrichment
vulnrichment
CVE-2020-28975
2020-11-21 00:00:00
nvd
nvd
CVE-2020-28975
2020-11-21 21:15:10