Цены Enterprise

CVE-2024-23731

9.8CRITICAL

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

Опубликовано: 1/21/2024Обновлено: 6/4/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

ИИ-АнализНа базе ИИ

Затронутые продукты

embedchainembedchain

Ссылки

https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch
https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch