Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service in aimhubio/aim
Vulnerability Description
In version 3.23.0 of aimhubio/aim, certain methods that request data from external servers do not have set timeouts, causing the server to wait indefinitely for a response. This can lead to a denial of service, as the tracking server does not respond to other requests while waiting. The issue arises in the client used by the `aim` tracking server to communicate with external resources, specifically in the `_run_read_instructions` method and similar calls without timeouts.
CVSS Information
N/A
Vulnerability Type
远程资源无超时同步访问
Vulnerability Title
Aim 资源管理错误漏洞
Vulnerability Description
Aim是美国Aim开源的一个易于使用和高性能的开源实验跟踪器。 Aim 3.23.0版本存在资源管理错误漏洞,该漏洞源于某些请求外部服务器数据的方法未设置超时,导致服务器无限期等待响应,可能引发拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A