| CVE-2026-24178 |
critical |
9.8 |
9.8 |
|
|
|
1mo ago |
NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A succ… |
| CVE-2022-34668 |
unknown |
— |
1.0 |
|
|
|
4y ago |
NVFLARE, versions prior to 2.1.4, contains a vulnerability that deserialization of Untrusted Data due to Pickle usage may allow an unprivileged network attacker to cause Remote Code Execution, Denial… |
| CVE-2022-31605 |
unknown |
— |
— |
|
|
|
4y ago |
NVFLARE, versions prior to 2.1.2, contains a vulnerability in its utils module, where YAML files are loaded via yaml.load() instead of yaml.safe_load(). The deserialization of Untrusted Data, may all… |
| CVE-2022-31604 |
unknown |
— |
— |
|
|
|
4y ago |
NVFLARE, versions prior to 2.1.2, contains a vulnerability in its PKI implementation module, where The CA credentials are transported via pickle and no safe deserialization. The deserialization of Un… |
| CVE-2022-21822 |
unknown |
— |
— |
|
|
|
4y ago |
Allocation of Resources Without Limits or Throttling in nvflare |
