| Page(s) : 1 ... 717 718 719 720 721 722 723 724 725 726 [727] 728 729 730 731 732 733 734 735 736 737 ... | Result(s) : 325773 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-03-20 | CVE-2024-9016 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-45595. Notes: All CVE users should reference CVE-2024-45595 inste... |
| N/A | 2025-03-20 | CVE-2024-9052 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| 9.8 | 2025-03-20 | CVE-2024-9053 | cve | vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer() RPC server entrypoints. The core functionality run_server_loop() calls the function _make_... |
| N/A | 2025-03-20 | CVE-2024-9056 | cve | BentoML version v1.3.4post1 is vulnerable to a Denial of Service (DoS) attack. The vulnerability can be exploited by appending characters, such as dashes (-), to the end of a mu... |
| N/A | 2025-03-20 | CVE-2024-9070 | cve | A deserialization vulnerability exists in BentoML's runner server in bentoml/bentoml versions |
| 9.8 | 2025-03-20 | CVE-2024-9095 | cve | In lunary-ai/lunary version v1.4.28, the /bigquery API route lacks proper access control, allowing any logged-in user to create a Datastream to Google BigQuery and export the en... |
| 7.1 | 2025-03-20 | CVE-2024-9096 | cve | In lunary-ai/lunary version 1.4.28, the /checklists/:id route allows low-privilege users to modify checklists by sending a PATCH request. The route lacks proper access control, ... |
| 6.1 | 2025-03-20 | CVE-2024-9098 | cve | In lunary-ai/lunary before version 1.4.30, a privilege escalation vulnerability exists where admins can invite new members with billing permissions, thereby gaining unauthorized... |
| 8.1 | 2025-03-20 | CVE-2024-9099 | cve | In lunary-ai/lunary version v1.4.29, the GET /projects API endpoint exposes both public and private API keys for all projects to users with minimal permissions, such as Viewers ... |
| N/A | 2025-03-20 | CVE-2024-9107 | cve | A stored cross-site scripting (XSS) vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, affecting version git 20b2e02. The vulnerability arises from improper sani... |
| N/A | 2025-03-20 | CVE-2024-9159 | cve | An incorrect authorization vulnerability exists in gaizhenbiao/chuanhuchatgpt version git c91dbfc. The vulnerability allows any user to restart the server at will, leading to a ... |
| N/A | 2025-03-20 | CVE-2024-9216 | cve | An authentication bypass vulnerability exists in gaizhenbiao/ChuanhuChatGPT, as of commit 3856d4f, allowing any user to read and delete other users' chat history. The vulne... |
| N/A | 2025-03-20 | CVE-2024-9229 | cve | A Denial of Service (DoS) vulnerability in the file upload feature of stangirard/quivr v0.0.298 allows unauthenticated attackers to cause excessive resource consumption by appen... |
| N/A | 2025-03-20 | CVE-2024-9308 | cve | An open redirect vulnerability in haotian-liu/llava version v1.2.0 (LLaVA-1.6) allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially c... |
| N/A | 2025-03-20 | CVE-2024-9309 | cve | A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API Server in haotian-liu/llava version v1.2.0 (LLaV... |
| 6.1 | 2025-03-20 | CVE-2024-9311 | cve | A Cross-Site Request Forgery (CSRF) vulnerability in haotian-liu/llava v1.2.0 (LLaVA-1.6) allows an attacker to upload files with malicious content without authentication or use... |
| N/A | 2025-03-20 | CVE-2024-9340 | cve | A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthenticated attackers to cause excessive resource consumption by sending malformed multipart ... |
| N/A | 2025-03-20 | CVE-2024-9362 | cve | An unauthenticated directory traversal vulnerability exists in Polyaxon, affecting the latest version. This vulnerability allows an attacker to retrieve directory information an... |
| N/A | 2025-03-20 | CVE-2024-9363 | cve | An unauthorized file deletion vulnerability exists in the latest version of the Polyaxon platform, which can lead to denial of service by terminating critical containers. An att... |
| N/A | 2025-03-20 | CVE-2024-9365 | cve | A Cross-Site Request Forgery (CSRF) vulnerability in polyaxon/polyaxon v2.4.0 allows attackers to perform unauthorized actions in the context of the victim's browser. This ... |
| Page(s) : 1 ... 717 718 719 720 721 722 723 724 725 726 [727] 728 729 730 731 732 733 734 735 736 737 ... | Result(s) : 325773 |
