Latest version: v1.7.2
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| PVE-2025-75515 | 75515 |
Affected versions of mlrun are potentially vulnerable to a URL parsin… |
|
- | - |
| PVE-2025-75299 | 75299 |
Affected versions of mlrun are potentially vulnerable to a path trave… |
|
- | - |
| CVE-2024-27454 | 67574 |
Mlrun 1.7.0rc8 updates its orjson requirement, now demanding a minimu… |
|
- | - |
| PVE-2024-66055 | 66055 |
Mlrun 1.7.0rc5 addresses a race condition related to the buffer pool,… |
|
- | - |
| PVE-2024-72912 | 72912 |
Mlrun affected versions prior to this update used raw SQL queries, ex… |
|
- | - |
| PVE-2023-58900 | 58900 |
Mlrun 1.4.0rc9 fixes SQL injection vulnerabilities in Datastore. htt… |
|
- | - |
| CVE-2023-29159 | 59142 |
Mlrun 1.4.0rc15 updates its dependency 'fastapi' to version '0.95.2' … |
|
HIGH | 7.5 |
| PVE-2023-53332 | 53476 |
Mlrun 1.3.0rc30 updates its dependency 'fastapi' requirement to '~=0.… |
|
- | - |
| CVE-2023-0401 | 53434 |
Mlrun 1.3.0rc29 unpins its dependency 'cryptography' to allow latest … |
|
HIGH | 7.5 |
| CVE-2023-0286 | 53452 |
Mlrun 1.3.0rc29 unpins its dependency 'cryptography' to allow latest … |
|
HIGH | 7.4 |
| CVE-2022-40897 | 53052 |
Mlrun 1.3.0rc19 requires 'setuptools~=65.5' to include a security fix. |
|
MEDIUM | 5.9 |
| CVE-2021-29605 | 48250 |
Mlrun 1.1.0rc6 and prior uses a version of 'TensorFlow' (2.4.1) that … |
|
MEDIUM | 5.5 |
| CVE-2020-6096 | 51014 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
HIGH | 8.1 |
| CVE-2021-3999 | 51013 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
HIGH | 7.8 |
| CVE-2021-3807 | 50987 |
Mlrun 1.1.0 updates the NPM package 'ansi-regex' in its base image to… |
|
HIGH | 7.5 |
| CVE-2019-25013 | 51017 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
MEDIUM | 5.9 |
| CVE-2022-21699 | 51004 |
Mlrun 1.1.0 updates the Python package 'ipython' in its base image to… |
|
HIGH | 8.8 |
| CVE-2021-27645 | 51009 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
LOW | 2.5 |
| CVE-2020-29562 | 51016 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
MEDIUM | 4.8 |
| CVE-2020-13529 | 51019 |
Mlrun 1.1.0 updates the packages 'libsystemd0' and 'libudev1' in its … |
|
MEDIUM | 6.1 |
| CVE-2016-10228 | 51015 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
MEDIUM | 5.9 |
| CVE-2022-23219 | 51010 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
CRITICAL | 9.8 |
| CVE-2021-41247 | 51002 |
Mlrun 1.1.0 updates the Python package 'jupyterhub' in its base image… |
|
HIGH | 7.5 |
| CVE-2021-33910 | 51018 |
Mlrun 1.1.0 updates the packages 'libsystemd0' and 'libudev1' in its … |
|
MEDIUM | 5.5 |
| CVE-2021-3918 | 50991 |
Mlrun 1.1.0 updates the NPM package 'json-schema' in its base image t… |
|
CRITICAL | 9.8 |
| CVE-2021-39135 | 50919 |
Mlrun 1.1.0 updates the NPM package '@npmcli/arborist' in its base im… |
|
HIGH | 7.8 |
| CVE-2021-32804 | 50994 |
Mlrun 1.1.0 updates the NPM package 'tar' in its base image to includ… |
|
HIGH | 8.1 |
| CVE-2021-23343 | 50993 |
Mlrun 1.1.0 updates the NPM package 'path-parse' in its base image to… |
|
HIGH | 7.5 |
| CVE-2021-37712 | 51000 |
Mlrun 1.1.0 updates the NPM package 'tar' in its base image to includ… |
|
HIGH | 8.6 |
| CVE-2021-32803 | 50996 |
Mlrun 1.1.0 updates the NPM package 'tar' in its base image to includ… |
|
HIGH | 8.1 |
| CVE-2022-24757 | 51001 |
Mlrun 1.1.0 updates the Python package 'jupyter-server' in its base i… |
|
HIGH | 7.5 |
| CVE-2021-39134 | 50985 |
Mlrun 1.1.0 updates the NPM package '@npmcli/arborist' in its base im… |
|
HIGH | 7.8 |
| CVE-2022-0536 | 50989 |
Mlrun 1.1.0 updates the NPM package 'follow-redirects' in its base im… |
|
MEDIUM | 5.9 |
| CVE-2022-23218 | 51012 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
CRITICAL | 9.8 |
| CVE-2021-33503 | 51006 |
Mlrun 1.1.0 updates the Python package 'urllib3' in its base image to… |
|
HIGH | 7.5 |
| CVE-2022-0155 | 50990 |
Mlrun 1.1.0 updates the NPM package 'follow-redirects' in its base im… |
|
MEDIUM | 6.5 |
| CVE-2021-37701 | 50997 |
Mlrun 1.1.0 updates the NPM package 'tar' in its base image to includ… |
|
HIGH | 8.6 |
| CVE-2022-24785 | 50992 |
Mlrun 1.1.0 updates the NPM package 'moment' in its base image to inc… |
|
HIGH | 7.5 |
| CVE-2020-27618 | 51008 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
MEDIUM | 5.5 |
| CVE-2021-35942 | 51007 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
CRITICAL | 9.1 |
| PVE-2022-50919 | 50986 |
Mlrun 1.1.0 updates the NPM package '@npmcli/git' in its base image t… |
|
- | - |
| CVE-2021-33430 | 51005 |
Mlrun 1.1.0 updates the Python package 'numpy' in its base image to i… |
|
MEDIUM | 5.3 |
| CVE-2021-32797 | 51003 |
Mlrun 1.1.0 updates the Python package 'jupyterlab' in its base image… |
|
CRITICAL | 9.6 |
| CVE-2021-37713 | 50995 |
Mlrun 1.1.0 updates the NPM package 'tar' in its base image to includ… |
|
HIGH | 8.6 |
| CVE-2021-43138 | 50988 |
Mlrun 1.1.0 updates the NPM package 'async' in its base image to incl… |
|
HIGH | 7.8 |
| CVE-2021-3997 | 51020 |
Mlrun 1.1.0 updates the packages 'libsystemd0' and 'libudev1' in its … |
|
MEDIUM | 5.5 |
| CVE-2021-3326 | 51011 |
Mlrun 1.1.0 updates the packages 'libc-bin', 'libc-dev-bin', 'libc6'… |
|
HIGH | 7.5 |
| CVE-2021-34141 | 49371 |
Mlrun 1.0.4rc1 updates its dependency 'storey' to v1.0.5 to fix trans… |
|
MEDIUM | 5.3 |
| CVE-2021-45958 | 49374 |
Mlrun 1.0.4rc1 updates its dependency 'Fastapi' to v0.78.0 to fix a t… |
|
MEDIUM | 5.5 |
| CVE-2021-41495 | 49372 |
Mlrun 1.0.4rc1 updates its dependency 'storey' to v1.0.5 to fix trans… |
|
MEDIUM | 5.3 |
| CVE-2021-41496 | 49352 |
Mlrun 1.0.4rc1 updates its dependency 'storey' to v1.0.5 to fix trans… |
|
MEDIUM | 5.5 |
| CVE-2021-3807 | 49166 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2021-3326 | 49179 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2021-37712 | 49212 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.6 |
| CVE-2020-29562 | 49184 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 4.8 |
| CVE-2022-22816 | 49218 |
Mlrun 1.0.3rc1 adds "pillow~=9.0" to requirements to tackle vulnerabi… |
|
MEDIUM | 6.5 |
| CVE-2022-0155 | 49169 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 6.5 |
| CVE-2020-6096 | 49182 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.1 |
| CVE-2021-3918 | 49171 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
CRITICAL | 9.8 |
| CVE-2022-24757 | 49172 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2022-21699 | 49170 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.8 |
| CVE-2021-32803 | 49210 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.1 |
| CVE-2019-25013 | 49185 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.9 |
| PVE-2022-49161 | 49165 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
- | - |
| CVE-2021-33503 | 49213 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2021-32797 | 49174 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
CRITICAL | 9.6 |
| CVE-2021-32798 | 49216 |
Mlrun 1.0.3rc1 adds "notebook~=6.4" to requirements to tackle vulnera… |
|
CRITICAL | 9.6 |
| CVE-2021-27645 | 49177 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
LOW | 2.5 |
| CVE-2021-23343 | 49207 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2020-13529 | 49203 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 6.1 |
| CVE-2016-10228 | 49200 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.9 |
| CVE-2021-41247 | 49173 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2021-35942 | 49175 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
CRITICAL | 9.1 |
| CVE-2022-23218 | 49180 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
CRITICAL | 9.8 |
| CVE-2022-24303 | 49217 |
Mlrun 1.0.3rc1 adds "pillow~=9.0" to requirements to tackle vulnerabi… |
|
CRITICAL | 9.1 |
| CVE-2022-0536 | 49168 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.9 |
| CVE-2022-23219 | 49178 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
CRITICAL | 9.8 |
| CVE-2021-32804 | 49208 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.1 |
| CVE-2021-3997 | 49204 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.5 |
| CVE-2021-39135 | 49161 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.8 |
| CVE-2021-39134 | 49164 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.8 |
| CVE-2022-24758 | 49215 |
Mlrun 1.0.3rc1 adds "notebook~=6.4" to requirements to tackle vulnera… |
|
HIGH | 7.5 |
| CVE-2022-24785 | 49205 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.5 |
| CVE-2021-33910 | 49202 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.5 |
| CVE-2021-37701 | 49211 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.6 |
| CVE-2020-27618 | 49176 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
MEDIUM | 5.5 |
| CVE-2021-3999 | 49188 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 7.8 |
| CVE-2022-22817 | 49220 |
Mlrun 1.0.3rc1 adds "pillow~=9.0" to requirements to tackle vulnerabi… |
|
CRITICAL | 9.8 |
| CVE-2021-37713 | 49209 |
Mlrun 1.0.3rc1 adds command to install security fixes in Docker base … |
|
HIGH | 8.6 |
| CVE-2022-22815 | 49219 |
Mlrun 1.0.3rc1 adds "pillow~=9.0" to requirements to tackle vulnerabi… |
|
MEDIUM | 6.5 |
| PVE-2021-42973 | 42973 |
Mlrun 0.9.0rc7 fixes the encoding of project secrets. https://github… |
|
- | - |