Unknown · Paddlepaddle · CVE-2023-38673
**Name of the Vulnerable Software and Affected Versions**
PaddlePaddle versions prior to 2.5.0
**Description**
The issue allows for command injection in the fs.py module, resulting in the ability to execute arbitrary commands on the operating system.
**Recommendations**
For versions prior to 2.5.0, update to version 2.5.0 or later to resolve the issue.
As a temporary workaround, consider restricting access to the fs.py module to minimize the risk of exploitation.