Vulnerabilities (CVE)

Filtered by vendor Rasa Subscribe
Filtered by product Rasa X
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-42556 1 Rasa 1 Rasa X 2024-02-28 4.3 MEDIUM 5.5 MEDIUM
Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file.