Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
BentoML has a Server-Side Template Injection via unsandboxed Jinja2 Environment in Dockerfile generation
Vulnerability Description
BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.38, the Dockerfile generation function generate_containerfile() in src/bentoml/_internal/container/generate.py uses an unsandboxed jinja2.Environment with the jinja2.ext.do extension to render user-provided dockerfile_template files. When a victim imports a malicious bento archive and runs bentoml containerize, attacker-controlled Jinja2 template code executes arbitrary Python directly on the host machine, bypassing all container isolation. This vulnerability is fixed in 1.4.38.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
CWE-1336
Vulnerability Title
BentoML 安全漏洞
Vulnerability Description
BentoML是BentoML开源的一个开源模型服务库。用于使用 Python 构建高性能和可扩展的人工智能应用程序。 BentoML 1.4.38之前版本存在安全漏洞,该漏洞源于Dockerfile生成函数使用未沙箱化的Jinja2环境渲染用户提供的模板,可能导致执行任意Python代码。
CVSS Information
N/A
Vulnerability Type
N/A