Critical severityNVD Advisory· Published Jan 21, 2024· Updated Jun 4, 2025
CVE-2024-23731
CVE-2024-23731
Description
The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
embedchainPyPI | < 0.1.57 | 0.1.57 |
Affected products
2- Embedchain/Embedchaindescription
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-rhhj-5436-95vfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-23731ghsaADVISORY
- github.com/embedchain/embedchain/compare/0.1.56...0.1.57ghsaWEB
- github.com/embedchain/embedchain/pull/1122ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/embedchain/PYSEC-2024-7.yamlghsaWEB
News mentions
0No linked articles in our index yet.