Pricing Enterprise

CVE-2024-23731

9.8CRITICAL

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

Published: 1/21/2024Updated: 6/4/2025

View on NVD View on MITRE

Description

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

AI AnalysisPowered by AI

Affected Products

embedchainembedchain

References

https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch
https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch