Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-57516 |
|
Unsafe Deserialization in deserialization (CVE-2026-57516)
vulnerability in deserialization (CVE-2026-57516). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41486 |
|
Code Injection in ray (CVE-2026-41486)
code injection in ray (CVE-2026-41486). Successful exploitation can lead to full system takeover. Exploitable via ``ray.data.arrow_tensor``. Mitigation: upgrade to `2.55.0` or later.
|
| CVE-2026-32981 |
|
Path Traversal in ray (CVE-2026-32981)
path traversal in ray (CVE-2026-32981). Confidential information can be exposed externally. Mitigation: upgrade to `2.8.1` or later.
|