OpenCVE

Filtered by vendor Paddlepaddle Subscriptions

Total 28 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-38672	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	4.7 Medium
FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and a denial of service.
CVE-2023-38671	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	8.3 High
Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible.
CVE-2023-38670	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	4.7 Medium
Null pointer dereference in paddle.flip in PaddlePaddle before 2.5.0. This resulted in a runtime crash and denial of service.
CVE-2023-38669	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	8.3 High
Use after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potentially exploitable condition.
CVE-2022-46742	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	10 Critical
Code injection in paddle.audio.functional.get_window in PaddlePaddle 2.4.0-rc0 allows arbitrary code execution.
CVE-2022-46741	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	7.1 High
Out-of-bounds read in gather_tree in PaddlePaddle before 2.4.
CVE-2022-45908	1 Paddlepaddle	1 Paddlepaddle	2024-11-21	9.8 Critical
In PaddlePaddle before 2.4, paddle.audio.functional.get_window is vulnerable to code injection because it calls eval on a user-supplied winstr. This may lead to arbitrary code execution.
CVE-2022-31523	1 Paddlepaddle	1 Anakin	2024-11-21	9.3 Critical
The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

« first previous Page 2 of 2.