Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
scikit-learn (aka sklearn) through 0.23.0 can unserialize and execute commands from an untrusted file that is passed to the joblib.load() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the joblib.load() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
scikit-learn 代码问题漏洞
Vulnerability Description
scikit-learn是一款基于Python的开源机器学习程序包,它支持垃圾邮件检测、图像识别和关联的连续值属性预测等功能。 scikit-learn (sklearn) 0.23.0及之前版本中存在安全漏洞。攻击者可利用该漏洞执行命令。
CVSS Information
N/A
Vulnerability Type
N/A