CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-49796

MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in `file.py` Users should use MindsDB's `staging` branch or v23.11.4.1, which contain a fix for the issue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.3%

CVSS Severity

CVSS v3 Score 5.3

References

https://github.com/mindsdb/mindsdb/commit/8d13c9c28ebcf3b36509eb679378004d4648d8fe
https://github.com/mindsdb/mindsdb/security/advisories/GHSA-crhp-7c74-cg4c
https://github.com/mindsdb/mindsdb/commit/8d13c9c28ebcf3b36509eb679378004d4648d8fe
https://github.com/mindsdb/mindsdb/security/advisories/GHSA-crhp-7c74-cg4c

Products affected by CVE-2023-49796

Mindsdb » Mindsdb » Version: 23.7.4.1

cpe:2.3:a:mindsdb:mindsdb:23.7.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-49796

Products

Pricing

Contact Us