Modeldb
Monthly
An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifact_path URL parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
An attacker can read any file on the filesystem on the server hosting ModelDB through an LFI in the artifact_path URL parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.