cbcvebase.
CVE-2024-57000
published 2025-02-12

CVE-2024-57000: Withdrawn Advisory: Command injection in Ray # Withdrawn Advisory This advisory is a duplicate of GHSA-6wgj-66m2-xxp2 / CVE-2023-48022. # Original Description…

critical9.8
Withdrawn Advisory: Command injection in Ray

# Withdrawn Advisory
This advisory is a duplicate of GHSA-6wgj-66m2-xxp2 / CVE-2023-48022.

# Original Description
An issue in Anyscale Inc Ray between v.2.9.3 and v.2.40.0 allows a remote attacker to execute arbitrary code via a crafted script.

Affected

1 ranges
VendorProductVersion rangeFixed in
anyscaleray2.9.3 – 2.40.0

CVSS provenance

ghsa9.8CRITICAL
osv9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.