DeepSpeed < 0.15.1 Command Injection

Oct 18, 2024, 9:34 AM

CVSS metrics ("CVSSv2 score" set to 6.8)

CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C")

CVSS metrics ("CVSSv3 score" set to 7.8)

CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H")

CVSSv2 severity (based on CVE-2024-43497, severity decreased from "High" to "Medium")

Plugin Feed: 202410180934