CVE-2023-52311
Published
CVSS v3
9.6
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT
Description
PaddlePaddle before 2.6.0 has a command injection in _wget_download. This resulted in the ability to execute arbitrary commands on the operating system.
PArallel Distributed Deep LEarning: Machine Learning Framework from Industrial Practice (『飞桨』核心框架,深度学习&机器学习高性能单机、分布式训练和跨平台部署)
GitHub