Security Advisory

CVE-2024-45852

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-12 13:02:29

Last updated 2024-09-12 17:15:03

Assigner HiddenLayer

State PUBLISHED

Description

Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded model to run arbitrary code on the server when interacted with.

← Browse all CVEs View on cve.org ↗