CVE-2021-4118
HIGH WAF: Medium
CVSS 7.8
Published: 2021-12-23
CWE-502
pytorch-lightning is vulnerable to Deserialization of Untrusted Data
WAF Coverage Analysis
Insecure Deserialization
Medium WAF Coverage
OWASP: A08:2021 Software and Data Integrity Failures
944xxx - Java Attack
Affected Software
| Vendor | Product | Version |
|---|---|---|
| lightningai | pytorch_lightning | up to 1.6.0 |
References
- github.com (Patch, Third Party Advisory)
- huntr.dev (Exploit, Issue Tracking, Patch, Third Party Advisory)