/

Directory Security Advisories

Security Advisories

CVE-2024-57000

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-57000

CGA ID

CGA-q8vr-78fm-fpr7

Severity

9.8

Critical

CVSS V3

Summary

Withdrawn Advisory: Command injection in Ray

Description

Withdrawn Advisory

This advisory is a duplicate of GHSA-6wgj-66m2-xxp2 / CVE-2023-48022.

Original Description

An issue in Anyscale Inc Ray between v.2.9.3 and v.2.40.0 allows a remote attacker to execute arbitrary code via a crafted script.

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

© 2024 Chainguard. All Rights Reserved.

Product

Chainguard Images

Why Chainguard

Container Image Security Vulnerability Remediation Compliance and Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Pricing Open Source Careers Newsroom Legal

Resources

Unchained Blog Events Trust Center Documentation