Gabrieleventuri - Pandasai CVE

Filtered by vendor Gabrieleventuri Subscribe

Filtered by product Pandasai

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-39660	1 Gabrieleventuri	1 Pandasai	2023-08-24	N/A	9.8 CRITICAL
An issue in Gaberiele Venturi pandasai v.0.8.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the prompt function.
CVE-2023-39661	1 Gabrieleventuri	1 Pandasai	2023-08-22	N/A	9.8 CRITICAL
An issue in pandas-ai v.0.9.1 and before allows a remote attacker to execute arbitrary code via the _is_jailbreak function.

Vulnerabilities (CVE)