Lucene search
Veracode Vulnerability DatabaseVERACODE:34540HistoryMar 07, 2022 - 5:05 a.m.
Remote Code Execution (RCE)
2022-03-0705:05:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.003 Low
EPSS
Percentile
71.6%
pytorch_lightning is vulnerable to remote code execution. The vulnerability exists due to the lack of sanitization of the insecure eval() function allowing an attacker to inject maliciously crafted script into the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pytorch-lightning | le | 1.5.10 | |
| pytorch-lightning | le | 1.5.10 |
Related
osv
osv
PYSEC-2022-181
2022-03-05 22:15:00
Code Injection in PyTorch Lightning
2022-03-06 00:00:16
CVE-2022-0845
2022-03-05 22:15:07
cvelist
cvelist
CVE-2022-0845 Code Injection in pytorchlightning/pytorch-lightning
2022-03-05 21:25:09
github
github
Code Injection in PyTorch Lightning
2022-03-06 00:00:16
nvd
nvd
CVE-2022-0845
2022-03-05 22:15:07
prion
prion
Code injection
2022-03-05 22:15:00
cve
cve
CVE-2022-0845
2022-03-05 22:15:07
huntr
huntr
Code Injection
2022-03-02 20:56:36
Contextual Code Execution
2022-06-04 11:47:46