VYPR

Labone Q

by Zhinst

CVEs (1)

  • CVE-2026-7584HigMay 1, 2026
    risk 0.51cvss 7.8epss 0.00

    The LabOne Q serialization framework uses a class-loading mechanism (import_cls) to dynamically import and instantiate Python classes during deserialization. Prior to the fix, this mechanism accepted arbitrary fully-qualified class names from the serialized data without any…