VYPR

PyPI package

rasa-pro

pkg:pypi/rasa-pro

Vulnerabilities (2)

  • CVE-2025-32377MedApr 18, 2025
    affected >= 3.12.0, < 3.12.6fixed 3.12.6

    Rasa Pro is a framework for building scalable, dynamic conversational AI assistants that integrate large language models (LLMs). A vulnerability has been identified in Rasa Pro where voice connectors in Rasa Pro do not properly implement authentication even when a token is config

  • CVE-2024-49375CriJan 14, 2025
    affected >= 3.10.0, < 3.10.12fixed 3.10.12

    Open source machine learning framework. A vulnerability has been identified in Rasa that enables an attacker who has the ability to load a maliciously crafted model remotely into a Rasa instance to achieve Remote Code Execution. The prerequisites for this are: 1. The HTTP API mus