CVE - CVE-2024-45595

CVE-ID
CVE-2024-45595	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
D-Tale is a visualizer for Pandas data structures. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. Users should upgrade to version 3.14.1 where the "Custom Filter" input is turned off by default.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://github.com/man-group/dtale#custom-filter URL:https://github.com/man-group/dtale#custom-filter MISC:https://github.com/man-group/dtale/commit/b6e30969390520d1400b55acbb13e5487b8472e8 URL:https://github.com/man-group/dtale/commit/b6e30969390520d1400b55acbb13e5487b8472e8 MISC:https://github.com/man-group/dtale/security/advisories/GHSA-pw44-4h99-wqff URL:https://github.com/man-group/dtale/security/advisories/GHSA-pw44-4h99-wqff
Assigning CNA
GitHub (maintainer security advisories)
Date Record Created
20240902	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240902)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)