VYPR

Trusty

by Trusty

CVEs (3)

  • CVE-2021-34374HigJun 30, 2021
    risk 0.50cvss 7.7epss 0.00

    Trusty contains a vulnerability in command handlers where the length of input buffers is not verified. This vulnerability can cause memory corruption, which may lead to information disclosure, escalation of privileges, and denial of service.

  • CVE-2025-6193MedJun 20, 2025
    risk 0.38cvss 5.9epss 0.01

    A command injection vulnerability was discovered in the TrustyAI Explainability toolkit. Arbitrary commands placed in certain fields of a LMEValJob custom resource (CR) may be executed in the LMEvalJob pod's terminal. This issue can be exploited via a maliciously crafted…

  • CVE-2024-39427MedJul 1, 2024
    risk 0.33cvss 5.1epss 0.00

    In trusty service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed