VIR Vulnerability Intelligence Relay

Package impact

python PyPI / nvflare

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-24178 critical 9.8 9.8 1mo ago NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A succ… linuxmacospythonnvidia
CVE-2022-34668 unknown 4y ago NVFLARE, versions prior to 2.1.4, contains a vulnerability that deserialization of Untrusted Data due to Pickle usage may allow an unprivileged network attacker to cause Remote Code Execution, Denial… python
CVE-2022-31605 unknown 4y ago NVFLARE, versions prior to 2.1.2, contains a vulnerability in its utils module, where YAML files are loaded via yaml.load() instead of yaml.safe_load(). The deserialization of Untrusted Data, may all… python
CVE-2022-31604 unknown 4y ago NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation module, where The CA credentials are transported via pickle and no safe deserialization. The deserialization of Un… python
CVE-2022-21822 unknown 4y ago Allocation of Resources Without Limits or Throttling in nvflare python