pkg:PyPI/torchserve

All known vulnerabilities

• CRITICAL9.8CVE-2024-35198TorchServe vulnerable to bypass of allowed_urls configuration
  from 0, < 0.11.0
• CRITICAL9.8CVE-2023-43654TorchServe Server-Side Request Forgery vulnerability
  >= 0.1.0, < 0.8.2
• HIGH8.2CVE-2024-35199TorchServe gRPC Port Exposure
  >= 0.3.0, < 0.11.0
• MEDIUM6.3TorchServe script references S3 bucket without ensuring ownership or confirming accessibility
  from 0, <= 0.11.0
• MEDIUM5.3TorchServe ZipSlip
  >= 0.1.0, < 0.9.0