exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-34997

больше 1 года назад

joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-34997

больше 1 года назад

joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.

CVSS3: 8.1

EPSS: Низкий

CVE-2024-34997

больше 1 года назад

joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.

CVSS3: 7.5

EPSS: Низкий

CVE-2024-34997

больше 1 года назад

joblib v1.4.2 was discovered to contain a deserialization vulnerabilit ...

CVSS3: 7.5

EPSS: Низкий

GHSA-rf65-fc2p-2gjv

больше 1 года назад

joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array().

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-34997 joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2024-34997 joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.	CVSS3: 8.1	0% Низкий	больше 1 года назад
CVE-2024-34997 joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.	CVSS3: 7.5	0% Низкий	больше 1 года назад
CVE-2024-34997 joblib v1.4.2 was discovered to contain a deserialization vulnerabilit ...	CVSS3: 7.5	0% Низкий	больше 1 года назад
GHSA-rf65-fc2p-2gjv joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array().		0% Низкий	больше 1 года назад

Уязвимостей на страницу