Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ReDoS in Giskard Scan text perturbation
Vulnerability Description
Giskard is an evaluation and testing framework for AI systems. A Remote Code Execution (ReDoS) vulnerability was discovered in Giskard component by the GitHub Security Lab team. When processing datasets with specific text patterns with Giskard detectors, this vulnerability could trigger exponential regex evaluation times, potentially leading to denial of service. Giskard versions prior to 2.15.5 are affected.
CVSS Information
N/A
Vulnerability Type
CWE-1333
Vulnerability Title
Giskard 安全漏洞
Vulnerability Description
Giskard是Giskard开源的一个人工智能系统的评估与测试框架。 Giskard 2.15.4版本及之前版本存在安全漏洞。攻击者利用该漏洞可以远程执行代码。
CVSS Information
N/A
Vulnerability Type
N/A