VYPR

PyPI package

gluoncv

pkg:pypi/gluoncv

Vulnerabilities (1)

  • CVE-2024-12216HigMar 20, 2025
    affected <= 0.10.0

    A vulnerability in the `ImageClassificationDataset.from_csv()` API of the `dmlc/gluon-cv` repository, version 0.10.0, allows for arbitrary file write. The function downloads and extracts `tar.gz` files from URLs without proper sanitization, making it susceptible to a TarSlip vuln