Vulnerabilities > CVE-2024-1603 - Unspecified vulnerability in Paddlepaddle 2.6.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
paddlepaddle
NVD
Published: 2024-03-23
Updated: 2025-01-24

Summary

paddlepaddle/paddle 2.6.0 allows arbitrary file read via paddle.vision.ops.read_file.

Vulnerable Configurations

Part Description Count
Application
Paddlepaddle
1

References