Security Advisory

CVE-2024-34997

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-17 00:00:00

Last updated 2024-08-27 14:40:01

Assigner mitre

State PUBLISHED

Description

joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is disputed by the supplier because NumpyArrayWrapper is only used during caching of trusted content.

← Browse all CVEs View on cve.org ↗