Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
BentoML has an Arbitrary File Write via Symlink Path Traversal in Tar Extraction
Vulnerability Description
BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.36, the safe_extract_tarfile() function validates that each tar member's path is within the destination directory, but for symlink members it only validates the symlink's own path, not the symlink's target. An attacker can create a malicious bento/model tar file containing a symlink pointing outside the extraction directory, followed by a regular file that writes through the symlink, achieving arbitrary file write on the host filesystem. This vulnerability is fixed in 1.4.36.
CVSS Information
N/A
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Vulnerability Title
BentoML 后置链接漏洞
Vulnerability Description
BentoML是BentoML开源的一个开源模型服务库。用于使用 Python 构建高性能和可扩展的人工智能应用程序。 BentoML 1.4.36之前版本存在后置链接漏洞,该漏洞源于safe_extract_tarfile函数仅验证符号链接自身路径而未验证其目标,可能导致攻击者通过特制的tar文件实现任意文件写入。
CVSS Information
N/A
Vulnerability Type
N/A