How severe is CVE-2024-35198?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.8 out of 10.

What type of vulnerability is CVE-2024-35198?

This is classified as CWE-706, which is a common weakness in software security.

CVE-2024-35198

CRITICAL Year: 2024

CVSS v3 Score

9.8

Critical

Weakness Type

CWE-706

View all →

Vulnerability Description

TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. TorchServe 's check on allowed_urls configuration can be by-passed if the URL contains characters such as ".." but it does not prevent the model from being downloaded into the model store. Once a file is downloaded, it can be referenced without providing a URL the second time, which effectively bypasses the allowed_urls security check. Customers using PyTorch inference Deep Learning Containers (DLC) through Amazon SageMaker and EKS are not affected. This issue in TorchServe has been fixed by validating the URL without characters such as ".." before downloading see PR #3082. TorchServe release 0.11.0 includes the fix to address this vulnerability. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVE-2019-7731

CRITICAL

CVSS:9.8(Critical)

MyWebSQL 3.7 has a remote code execution (RCE) vulnerability after an attacker writes shell code into the database, and executes the Backup Database function with a .php filename for the backup's arch...

CWE-7062019

CVE-2019-8908

CRITICAL

CVSS:9.8(Critical)

An issue was discovered in WTCMS 1.0. It allows remote attackers to execute arbitrary PHP code by going to the "Setting -> Mailbox configuration -> Registration email template" screen, and uploading a...

CWE-7062019

CVE-2020-10574

CRITICAL

CVSS:9.8(Critical)

An issue was discovered in Janus through 0.9.1. janus.c tries to use a string that doesn't actually exist during a "query_logger" Admin API request, because of a typo in the JSON validation.

CWE-7062020

CVE-2020-12278

CRITICAL

CVSS:9.8(Critical)

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution ...

CWE-7062020

CVE-2020-12279

CRITICAL

CVSS:9.8(Critical)

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when cl...

CWE-7062020

CVE-2020-15505

CRITICAL

CVSS:9.8(Critical)

A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 a...

CWE-7062020

CVE-2024-35198

Vulnerability Description

Related Vulnerabilities

CVE-2019-7731

CVE-2019-8908

CVE-2020-10574

CVE-2020-12278

CVE-2020-12279

CVE-2020-15505