Количество 2
Количество 2
CVE-2024-45855
больше 1 года назад
Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it.
CVSS3: 7.1
EPSS: Низкий
GHSA-fr9q-rgwq-g5r5
больше 1 года назад
MindsDB Deserialization of Untrusted Data vulnerability
CVSS3: 7.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-45855 Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it. | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| GHSA-fr9q-rgwq-g5r5 MindsDB Deserialization of Untrusted Data vulnerability | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу
20