Package impact
PyPI / bentoml
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-32375 | unknown | — | 1.0 | 1y ago | BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.8, there was an insecure deserialization in BentoML's runner server. By setting… | |||
| CVE-2025-27520 | unknown | — | 1.0 | 1y ago | BentoML Allows Remote Code Execution (RCE) via Insecure Deserialization |