JFrog Security Research
Discover
Follow JFrog Security
Home
Discover
Follow JFrog Security
< Back
Software Vulnerabilities
Last Updated On
23 Aug, 2024
142
Vulnerabilities
discovered
JFSA-2024-001039605
Mage AI pipeline interaction request remote arbitrary file leak
medium
CVE-2024-45190
CVE-2024-45190
CVE-2024-45190
medium
Discovered By
Ori Hollander
●
Published on
23 Aug, 2024
●
JFSA-2024-001039603
Mage AI file content request remote arbitrary file leak
medium
CVE-2024-45188
CVE-2024-45188
CVE-2024-45188
medium
Discovered By
Ori Hollander
●
Published on
23 Aug, 2024
●
JFSA-2024-001039604
Mage AI git content request remote arbitrary file leak
medium
CVE-2024-45189
CVE-2024-45189
CVE-2024-45189
medium
Discovered By
Ori Hollander
●
Published on
23 Aug, 2024
●
JFSA-2024-001039602
Mage AI deleted users RCE
high
CVE-2024-45187
CVE-2024-45187
CVE-2024-45187
high
Discovered By
Ori Hollander
●
Published on
23 Aug, 2024
●
JFSA-2024-001039574
Mage AI Terminal Server Infoleak
medium
CVE-2024-8072
CVE-2024-8072
CVE-2024-8072
medium
Discovered By
Ori Hollander
●
Published on
22 Aug, 2024
●
JFSA-2024-001039248
W&B Weave server remote arbitrary file leak
high
CVE-2024-7340
CVE-2024-7340
CVE-2024-7340
high
Discovered By
Natan Nehorai and Uriya Yavnieli
●
Published on
31 Jul, 2024
●
JFSA-2024-001035518
H2O Model Deserialization RCE
high
CVE-2024-6960
CVE-2024-6960
CVE-2024-6960
high
Discovered By
Ori Hollander
●
Published on
21 Jul, 2024
●
JFSA-2024-001035519
Guardrails RAIL XXE
medium
CVE-2024-6961
CVE-2024-6961
CVE-2024-6961
medium
Discovered By
Natan Nehorai
●
Published on
21 Jul, 2024
●
JFSA-2024-001035320
Deep Lake Kaggle dataset command injection
high
CVE-2024-6507
CVE-2024-6507
CVE-2024-6507
high
Discovered By
Natan Nehorai
●
Published on
4 Jul, 2024
●
JFSA-2024-001034449
Vanna prompt injection RCE
high
CVE-2024-5565
CVE-2024-5565
CVE-2024-5565
high
Discovered By
Natan Nehorai
●
Published on
31 May, 2024
●
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15