Vulnerabilities > Mindsdb > Mindsdb > 23.6.4.0

DATE CVE VULNERABILITY TITLE RISK
2024-09-12 CVE-2024-45852 Deserialization of Untrusted Data vulnerability in Mindsdb
Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded model to run arbitrary code on the server when interacted with.
network
low complexity
mindsdb CWE-502
8.8
8.8
2024-09-05 CVE-2024-24759 Server-Side Request Forgery (SSRF) vulnerability in Mindsdb
MindsDB is a platform for building artificial intelligence from enterprise data.
network
low complexity
mindsdb CWE-918
critical
 9.1
9.1
2023-12-22 CVE-2023-50731 Path Traversal vulnerability in Mindsdb
MindsDB is a SQL Server for artificial intelligence.
network
low complexity
mindsdb CWE-22
critical
 9.1
9.1
2023-12-11 CVE-2023-49795 Unspecified vulnerability in Mindsdb
MindsDB connects artificial intelligence models to real time data.
network
low complexity
mindsdb
5.3
5.3
2023-08-04 CVE-2023-38699 Unspecified vulnerability in Mindsdb
MindsDB's AI Virtual Database allows developers to connect any AI/ML model to any datasource.
network
low complexity
mindsdb
6.5
6.5