Vulnerabilities > Anyscale

DATE CVE VULNERABILITY TITLE RISK
2023-11-28 CVE-2023-48022 Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0
Anyscale Ray 2.6.3 and 2.8.0 allows a remote attacker to execute arbitrary code via the job submission API.
network
low complexity
anyscale CWE-918
critical
9.8
2023-11-28 CVE-2023-48023 Server-Side Request Forgery (SSRF) vulnerability in Anyscale RAY 2.6.3/2.8.0
Anyscale Ray 2.6.3 and 2.8.0 allows /log_proxy SSRF.
network
low complexity
anyscale CWE-918
critical
9.1