Vulnerabilities in PaddlePaddle
32 resultsCVE-2023-38673CRITICALCommand injection in fs.pyEPSS 2.0%CVE-2024-0917CRITICALremote code execution in paddlepaddle/paddle 2.6.0EPSS 1.6%CVE-2023-52310CRITICALCommand injection in get_online_pass_intervalEPSS 1.2%CVE-2023-52314CRITICALCommand injection in convert_shape_compareEPSS 1.2%CVE-2023-52311CRITICALCommand injection in _wget_downloadEPSS 1.2%CVE-2024-0817CRITICALCommand injection in IrGraph.draw in paddlepaddle/paddle 2.6.0EPSS 1.2%CVE-2024-0815CRITICALCommand injection in paddle.utils.download._wget_download (bypass filter) in paddlepaddle/paddle 2.6.0EPSS 1.1%CVE-2022-46742CRITICALCode injection in paddle.audio.functional.get_window in PaddlePaddle 2.4.0-rc0 allows arbitrary code execution.
EPSS 1.1%CVE-2024-0818CRITICALArbitrary File Overwrite Via Path Traversal in paddlepaddle/paddle before 2.6EPSS 1.0%CVE-2022-46741HIGHOut-of-bounds read in gather_tree in PaddlePaddle before 2.4. EPSS 0.7%CVE-2023-38669HIGHUse after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potentially exploitable condition.
EPSS 0.7%CVE-2023-38671HIGHHeap buffer overflow in paddle.traceEPSS 0.6%CVE-2023-38672MEDIUMFPE in paddle.linalg.matrix_powerEPSS 0.6%CVE-2023-52304HIGHStack overflow in paddle.searchsortedEPSS 0.6%CVE-2024-1603HIGHconfirmedEPSS 0.6%CVE-2023-38670MEDIUMNull pointer dereference in paddle.flipEPSS 0.6%CVE-2023-52302MEDIUMSegfault in paddle.nextafterEPSS 0.5%CVE-2023-52309HIGHHeap buffer overflow in paddle.repeat_interleaveEPSS 0.5%CVE-2023-52307HIGHStack overflow in paddle.linalg.lu_unpackEPSS 0.5%CVE-2023-52308MEDIUMFPE in paddle.aminEPSS 0.5%