CVE-2024-55459

Опубликовано: 08 янв. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 6.5

Описание

An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_file function.

Релиз	Статус	Примечание
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	DNE
noble	DNE
oracular	DNE
plucky	DNE
questing	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 26%

0.00115

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2024-55459

CVSS3: 5.7

redhat

11 месяцев назад

An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_file function.

CVE-2024-55459

CVSS3: 6.5

nvd

11 месяцев назад

An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_file function.

CVE-2024-55459

msrc

3 месяца назад

An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_file function.

CVE-2024-55459

CVSS3: 6.5

debian

11 месяцев назад

An issue in keras 3.7.0 allows attackers to write arbitrary files to t ...

GHSA-cjgq-5qmw-rcj6

github

11 месяцев назад

keras Path Traversal vulnerability

EPSS

Процентиль: 26%

0.00115

Низкий

6.5 Medium

CVSS3

CVE-2024-55459

Описание

Пакет keras

Ссылки на источники

Связанные уязвимости