Количество 2
Количество 2
CVE-2024-45854
больше 1 года назад
Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when a ‘describe’ query is run on it.
CVSS3: 7.1
EPSS: Низкий
GHSA-7vhh-gfjc-x8rm
больше 1 года назад
MindsDB Deserialization of Untrusted Data vulnerability
CVSS3: 7.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-45854 Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when a ‘describe’ query is run on it. | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| GHSA-7vhh-gfjc-x8rm MindsDB Deserialization of Untrusted Data vulnerability | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу
20