VYPR

PyPI package

ai-flow

pkg:pypi/ai-flow

Vulnerabilities (1)

  • CVE-2024-0960Jan 27, 2024
    affected <= 0.3.1

    A vulnerability was found in flink-extended ai-flow 0.3.1. It has been declared as critical. Affected by this vulnerability is the function cloudpickle.loads of the file \ai_flow\cli\commands\workflow_command.py. The manipulation leads to deserialization. The attack can be launch