Skip to content

GitHub Security Lab (GHSL) Vulnerability Report GHSL-2023-182

Moderate
ZoranPandovski published GHSA-34mr-6q8x-g9r6 Dec 11, 2023

Package

pip mindsdb (pip)

Affected versions

23.7.4.1

Patched versions

23.11.4.1

Description

Impact

Issue 1: SSRF in file.py (GHSL-2023-182)

Patches

Use mindsdb staging branch or v23.11.4.1

References

SSRF prevention cheatsheet.

Severity

Moderate

CVE ID

CVE-2023-49795

Weaknesses

No CWEs

Credits