Описание
A command injection vulnerability in ModelScope's ms-agent versions v1.6.0rc1 and earlier exists, allowing an attacker to execute arbitrary operating system commands through crafted prompt-derived input.
Ссылки
EPSS
Процентиль: 85%
0.02312
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 6.5
redhat
28 дней назад
A command injection vulnerability in ModelScope's ms-agent versions v1.6.0rc1 and earlier exists, allowing an attacker to execute arbitrary operating system commands through crafted prompt-derived input.
EPSS
Процентиль: 85%
0.02312
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-77