VYPR

Modeldb

by Vertaai

Source repositories

CVEs (1)

  • CVE-2024-1961HigApr 16, 2024
    risk 0.58cvss 8.8epss 0.01

    vertaai/modeldb is vulnerable to a path traversal attack due to improper sanitization of user-supplied file paths in its file upload functionality. Attackers can exploit this vulnerability to write arbitrary files anywhere in the file system by manipulating the 'artifact_path'…