Precios Enterprise

CVE-2024-23731

9.8CRITICAL

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

Publicado: 1/21/2024Actualizado: 6/4/2025

Ver en NVD Ver en MITRE

Descripción

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

Análisis IAImpulsado por IA

Productos Afectados

embedchainembedchain

Referencias

https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch
https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch