AIKIDO-2024-10480

deepspeed is vulnerable to Eval Injection

15

Low

deepspeed python

AIKIDO-2024-10480: deepspeed is vulnerable to Eval Injection in versions 0.1.0 - 0.15.4.

Eval Injection
Vuln in 0.1.0 - 0.15.4
Fixed in 0.16.0
No CVE available
TL;DR

Who does this affect?

How can it be fixed?

Background info

Link to vendor website

Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US