Vulnerabilities > CVE-2024-36730 - Improper Handling of Exceptional Conditions vulnerability in Oneflow 0.9.1

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
oneflow
CWE-755
NVD
Published: 2024-06-06
Updated: 2024-10-15

Summary

Improper input validation in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting negative values into the oneflow.zeros/ones parameter.

Vulnerable Configurations

Part Description Count
Application
Oneflow
1

Common Weakness Enumeration (CWE)

References