All 4 CVE vulnerabilities found in prefect, with AI-generated Chinese analysis, references, and POCs.
Vendor: PrefectHQ
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-7725 | PrefectHQ prefect GitRepository Pull storage.py argument injection CWE-88 | 6.3 | Medium | 2026-05-04 |
| CVE-2026-7724 | PrefectHQ prefect Webhook/Notification validate_restricted_url toctou CWE-367 | 5.0 | Medium | 2026-05-04 |
| CVE-2026-7723 | PrefectHQ prefect WebSocket Endpoint in missing authentication CWE-306 | 7.3 | High | 2026-05-04 |
| CVE-2026-7722 | PrefectHQ prefect Health Check API health endswith improper authentication CWE-287 | 5.3 | Medium | 2026-05-04 |
All 4 known CVE vulnerabilities affecting prefect with full Chinese analysis, references, and POCs where available.