Skip to content

Commit

Permalink
Analysis
Browse files Browse the repository at this point in the history
  • Loading branch information
github-actions committed Jan 14, 2025
1 parent 6799341 commit 76dda00
Show file tree
Hide file tree
Showing 5 changed files with 10 additions and 5 deletions.
3 changes: 2 additions & 1 deletion vulns/mindsdb/PYSEC-2023-278.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ details: MindsDB connects artificial intelligence models to real time data. Vers
aliases:
- CVE-2023-49796
- GHSA-crhp-7c74-cg4c
modified: '2025-01-10T11:04:17.043341Z'
modified: '2025-01-14T17:21:51.612710Z'
published: '2023-12-11T21:15:00Z'
withdrawn: '2024-11-22T04:37:04Z'
references:
Expand Down Expand Up @@ -540,6 +540,7 @@ affected:
- 24.12.4.0
- 25.1.2.0
- 25.1.2.1
- 25.1.3.0
severity:
- type: CVSS_V3
score: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
3 changes: 2 additions & 1 deletion vulns/mindsdb/PYSEC-2024-82.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ details: Deserialization of untrusted data can occur in versions 23.3.2.0 and ne
code on the server when interacted with.
aliases:
- CVE-2024-45852
modified: '2025-01-10T11:04:17.214008Z'
modified: '2025-01-14T17:21:51.792607Z'
published: '2024-09-12T13:15:00Z'
references:
- type: EVIDENCE
Expand Down Expand Up @@ -130,6 +130,7 @@ affected:
- 24.12.4.0
- 25.1.2.0
- 25.1.2.1
- 25.1.3.0
severity:
- type: CVSS_V3
score: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3 changes: 2 additions & 1 deletion vulns/mindsdb/PYSEC-2024-83.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ details: "Deserialization of untrusted data can occur in versions 23.10.2.0 and
\ to run arbitrary code on the server when used for a prediction."
aliases:
- CVE-2024-45853
modified: '2025-01-10T11:04:17.285848Z'
modified: '2025-01-14T17:21:51.864935Z'
published: '2024-09-12T13:15:00Z'
references:
- type: EVIDENCE
Expand Down Expand Up @@ -90,6 +90,7 @@ affected:
- 24.12.4.0
- 25.1.2.0
- 25.1.2.1
- 25.1.3.0
severity:
- type: CVSS_V3
score: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
3 changes: 2 additions & 1 deletion vulns/mindsdb/PYSEC-2024-84.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ details: "Deserialization of untrusted data can occur in versions 23.10.3.0 and
\ it."
aliases:
- CVE-2024-45854
modified: '2025-01-10T11:04:17.356884Z'
modified: '2025-01-14T17:21:51.937251Z'
published: '2024-09-12T13:15:00Z'
references:
- type: EVIDENCE
Expand Down Expand Up @@ -90,6 +90,7 @@ affected:
- 24.12.4.0
- 25.1.2.0
- 25.1.2.1
- 25.1.3.0
severity:
- type: CVSS_V3
score: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
3 changes: 2 additions & 1 deletion vulns/mindsdb/PYSEC-2024-85.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ details: "Deserialization of untrusted data can occur in versions 23.10.2.0 and
\ to run arbitrary code on the server when using \u2018finetune\u2019 on it."
aliases:
- CVE-2024-45855
modified: '2025-01-10T11:04:17.425718Z'
modified: '2025-01-14T17:21:52.006792Z'
published: '2024-09-12T13:15:00Z'
references:
- type: EVIDENCE
Expand Down Expand Up @@ -90,6 +90,7 @@ affected:
- 24.12.4.0
- 25.1.2.0
- 25.1.2.1
- 25.1.3.0
severity:
- type: CVSS_V3
score: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

0 comments on commit 76dda00

Please sign in to comment.