Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Allegro AI’s open-source version of ClearML stores passwords in plaintext within the MongoDB instance, resulting in a compromised server leaking all user emails and passwords.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
Allegro AI ClearML 安全漏洞
Vulnerability Description
Allegro是Allegro开源的一个主要针对视频游戏和多媒体编程的跨平台库。 Allegro AI ClearML存在安全漏洞,该漏洞源于在 MongoDB 实例中以明文形式存储密码,导致受感染的服务器泄露所有用户电子邮件和密码。
CVSS Information
N/A
Vulnerability Type
N/A