Vulnerabilities > Paddlepaddle > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-07 | CVE-2022-46741 | Out-of-bounds Read vulnerability in Paddlepaddle Out-of-bounds read in gather_tree in PaddlePaddle before 2.4. | 9.1 |
| 2022-11-26 | CVE-2022-45908 | Code Injection vulnerability in Paddlepaddle In PaddlePaddle before 2.4, paddle.audio.functional.get_window is vulnerable to code injection because it calls eval on a user-supplied winstr. | 9.8 |
| 2022-07-11 | CVE-2022-31523 | Path Traversal vulnerability in Paddlepaddle Anakin 0.1.0/0.1.1 The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely. | 9.3 |