Количество 2
Количество 2
CVE-2024-37053
больше 1 года назад
Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with.
CVSS3: 8.8
EPSS: Низкий
GHSA-43c4-9qgj-x742
больше 1 года назад
MLFlow unsafe deserialization
CVSS3: 8.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-37053 Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling a maliciously uploaded scikit-learn model to run arbitrary code on an end user’s system when interacted with. | CVSS3: 8.8 | 1% Низкий | больше 1 года назад |
| GHSA-43c4-9qgj-x742 MLFlow unsafe deserialization | CVSS3: 8.8 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу
20