Workflow

Aim

Latest version: v4.0.3

Vulnerabilities (20)

CVE/PVE Vulnerability ID Advisory Affected versions Severity Severity Score
CVE-2024-12778 76253

A vulnerability in aimhubio/aim version 3.25.0 allows for a denial of…
  • <3.25.0
 - -
CVE-2024-12777 76268

A vulnerability in aimhubio/aim version 3.25.0 allows for a denial of…
  • <3.25.0
 - -
CVE-2025-0189 76186

In version 3.25.0 of aimhubio/aim, the tracking server is vulnerable …
  • <=3.25.0
 HIGH 7.5
CVE-2025-0190 76184

In version 3.25.0 of aimhubio/aim, a denial of service vulnerability …
  • <=3.25.0
 HIGH 7.5
CVE-2024-10110 76298

In version 3.23.0 of aimhubio/aim, the ScheduledStatusReporter object…
  • <3.23.0
 - -
CVE-2024-8061 76217

In version 3.23.0 of aimhubio/aim, certain methods that request data …
  • <3.23.0
 - -
CVE-2024-6851 76249

In version 3.22.0 of aimhubio/aim, the LocalFileManager._cleanup func…
  • <3.22.0
 - -
PVE-2022-48606 48606

Aim before 3.2.0 runs its server only on unsafe HTTP protocol. https…
  • <3.2.0
 HIDDEN X.Y
CVE-2024-6829 76240

A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to …
  • <3.19.3
 - -
CVE-2024-6483 76256

A vulnerability in the runs/delete-batch endpoint of aimhubio/aim ver…
  • <3.19.3
 - -
CVE-2024-2196 71905

aimhubio/aim is vulnerable to Cross-Site Request Forgery (CSRF), allo…
  • <=3.17.5
 - -
CVE-2024-8769 76202

A vulnerability in the LockManager.release_locks function in aimhubio…
  • >=3.15.0, <3.27.0
 CRITICAL 9.1
CVE-2024-8238 76223

In version 3.22.0 of aimhubio/aim, the AimQL query language uses an o…
  • >=3.0.0,<3.22.0
 - -
CVE-2024-2195 71904

A critical Remote Code Execution (RCE) vulnerability was identified i…
  • >=3.0.0
 - -
CVE-2020-5313 48615

Aim 1.2.13 updates its dependency 'pillow' to v6.2.2 to include secur…
  • <1.2.13
 HIGH 7.1
CVE-2020-5312 48614

Aim 1.2.13 updates its dependency 'pillow' to v6.2.2 to include secur…
  • <1.2.13
 CRITICAL 9.8
CVE-2020-5311 48613

Aim 1.2.13 updates its dependency 'pillow' to v6.2.2 to include secur…
  • <1.2.13
 CRITICAL 9.8
CVE-2020-5310 48607

Aim 1.2.13 updates its dependency 'pillow' to v6.2.2 to include secur…
  • <1.2.13
 HIGH 8.8
CVE-2021-43775 54444

Aim is an open-source, self-hosted machine learning experiment tracki…
  • >=0,<3.1.0
 HIGH 8.6
CVE-2024-8863 73307

A critical security vulnerability affects the aimhubio aim library. T…
  • >=0
 MEDIUM 5.4