定价企业版

CVE-2024-23731

9.8CRITICAL

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

发布于: 1/21/2024更新于: 6/4/2025

在NVD查看在MITRE查看

描述

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

AI分析AI驱动

受影响产品

embedchainembedchain

参考资料

https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch
https://github.com/embedchain/embedchain/compare/0.1.56...0.1.57
Patch
https://github.com/embedchain/embedchain/pull/1122
Issue TrackingPatch