High severity8.8NVD Advisory· Published Mar 7, 2024· Updated Jun 17, 2026
CVE-2024-0815
CVE-2024-0815
Description
Command injection in paddle.utils.download._wget_download (bypass filter) in paddlepaddle/paddle 2.6.0
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
paddlepaddlePyPI | <= 2.6.0 | — |
Affected products
2- Range: unspecified
Patches
Vulnerability mechanics
References
4- huntr.com/bounties/83bf8191-b259-4b24-8ec9-0115d7c05350nvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-qqv2-35q8-p2g2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-0815ghsaADVISORY
- github.com/PaddlePaddle/Paddle/commit/4c0888d7b8f10405e2e79adc41c224264f93e816ghsaWEB
News mentions
0No linked articles in our index yet.