Vulnerabilities > Improper Control of Dynamically-Managed Code Resources
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-06 | CVE-2024-5452 | Improper Control of Dynamically-Managed Code Resources vulnerability in Lightningai Pytorch Lightning A remote code execution (RCE) vulnerability exists in the lightning-ai/pytorch-lightning library version 2.2.1 due to improper handling of deserialized user input and mismanagement of dunder attributes by the `deepdiff` library. | 9.8 |
| 2024-01-12 | CVE-2023-31032 | Improper Control of Dynamically-Managed Code Resources vulnerability in Nvidia DGX A100 Firmware 1.18/1.8 NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable evaluation by local access. | 5.5 |
| 2023-11-18 | CVE-2023-43177 | Improper Control of Dynamically-Managed Code Resources vulnerability in Crushftp CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes. | 9.8 |
| 2023-11-03 | CVE-2023-5763 | Improper Control of Dynamically-Managed Code Resources vulnerability in Eclipse Glassfish 5.1.0/6.0.0/6.2.5 In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote attackers to load malicious code on the server via access to insecure ORB listeners. | 9.8 |
| 2023-09-25 | CVE-2022-4318 | Improper Control of Dynamically-Managed Code Resources vulnerability in multiple products A vulnerability was found in cri-o. | 7.8 |
| 2023-09-02 | CVE-2023-39983 | Improper Control of Dynamically-Managed Code Resources vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1. | 5.3 |
| 2023-07-11 | CVE-2023-37271 | Improper Control of Dynamically-Managed Code Resources vulnerability in Zope Restrictedpython RestrictedPython is a tool that helps to define a subset of the Python language which allows users to provide a program input into a trusted environment. | 9.9 |
| 2023-06-26 | CVE-2023-35930 | Improper Control of Dynamically-Managed Code Resources vulnerability in Authzed Spicedb 1.22.0 SpiceDB is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. | 5.3 |
| 2023-05-30 | CVE-2023-33175 | Improper Control of Dynamically-Managed Code Resources vulnerability in Toui Project Toui ToUI is a Python package for creating user interfaces (websites and desktop apps) from HTML. | 7.5 |
| 2023-04-14 | CVE-2023-29199 | Improper Control of Dynamically-Managed Code Resources vulnerability in VM2 Project VM2 There exists a vulnerability in source code transformer (exception sanitization logic) of vm2 for versions up to 3.9.15, allowing attackers to bypass `handleException()` and leak unsanitized host exceptions which can be used to escape the sandbox and run arbitrary code in host context. | 10.0 |