exploitDog

CVE-2025-63397

Опубликовано: 10 нояб. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion.

Ссылки

http://oneflow.com
Product
https://github.com/Daisy2ang
Not Applicable
https://github.com/Oneflow-Inc/oneflow
Product
https://github.com/Oneflow-Inc/oneflow/issues/10666
Exploit
Issue Tracking
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oneflow:oneflow:0.9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.00092

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-5mr4-m32g-vmwq

CVSS3: 6.5

github

3 месяца назад

Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion.

EPSS

Процентиль: 26%

0.00092

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20