Количество 2
Количество 2
CVE-2024-11602
A Cross-Origin Resource Sharing (CORS) vulnerability exists in feast-dev/feast version 0.40.0. The CORS configuration on the agentscope server does not properly restrict access to only trusted origins, allowing any external domain to make requests to the API. This can bypass intended security controls and potentially expose sensitive information.
GHSA-wxpc-2674-rxvw
Feast Cross-Origin Resource Sharing vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-11602 A Cross-Origin Resource Sharing (CORS) vulnerability exists in feast-dev/feast version 0.40.0. The CORS configuration on the agentscope server does not properly restrict access to only trusted origins, allowing any external domain to make requests to the API. This can bypass intended security controls and potentially expose sensitive information. | CVSS3: 7.4 | 0% Низкий | 11 месяцев назад |
| GHSA-wxpc-2674-rxvw Feast Cross-Origin Resource Sharing vulnerability | CVSS3: 7.4 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу