exploitDog

GHSA-5mr4-m32g-vmwq

Опубликовано: 11 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion.

Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion.

Ссылки

EPSS

Процентиль: 30%

0.00107

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-63397

CVSS3: 6.5

nvd

3 месяца назад

Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion.

EPSS

Процентиль: 30%

0.00107

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20