Bayuncao

**Name of the Vulnerable Software and Affected Versions** agentUniverse versions up to 0.0.18 **Description** A critical issue exists in `agentUniverse` that allows for remote OS command injection. The issue affects the `StdioServerParameters` function within the `MCPSessionManager/MCPTool/MCPToolkit` component. The exploit has been publicly disclosed. The vendor was notified but did not respond. **Recommendations** Versions prior to 0.0.18 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SkyworkAI DeepResearchAgent up to 08eb7f8eb9505d0094d75bb97ff7dacc3fa3bbf2 **Description** A critical vulnerability exists in SkyworkAI DeepResearchAgent. The issue is an OS command injection within the `from code`, `from dict`, and `from mcp` functions of the `src/tools/tools.py` file. This allows for remote attacks. The exploit has been publicly disclosed. Continuous delivery with rolling releases is used, and no specific version details for affected or updated releases are available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** agno-agi agno versions up to 1.7.5 **Description** A critical issue exists in the Model Context Protocol Handler component of agno-agi agno. The `MCPTools/MultiMCPTools` function within the `libs/agno/agno/tools/mcp.py` library is susceptible to OS command injection through manipulation of the `command` argument. This issue can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** Versions prior to 1.7.5: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LangChain langchain community version 0.0.26 LangChain version 0.1.9 **Description** A critical issue has been found, affecting the `load local` function in the `libs/community/langchain community/retrievers/tfidf.py` library of the TFIDFRetriever component. This issue leads to server-side request forgery and can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For LangChain langchain community version 0.0.26, upgrade to version 0.0.27 to address this issue. For LangChain version 0.1.9, consider disabling the `load local` function in the `libs/community/langchain community/retrievers/tfidf.py` library as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** van der Schaar LAB AutoPrognosis version 0.1.21 **Description** A critical vulnerability was found in the function `load model from file` of the component Release Note Handler. The manipulation leads to deserialization. The attack can be initiated remotely. The complexity of an attack is rather high, and the exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. **Recommendations** For van der Schaar LAB AutoPrognosis version 0.1.21, as a temporary workaround, consider disabling the `load model from file` function until a patch is available. Restrict access to the Release Note Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DeepFaceLab pretrained DF.wf.288res.384.92.72.22 **Description** A vulnerability was found in DeepFaceLab pretrained and classified as problematic. This issue affects the function `apply xseg` of the file `main.py`. The manipulation leads to deserialization. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. Offensive activities were identified targeting DeepFaceLab. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** flink-extended ai-flow version 0.3.1 **Description** A critical issue has been found, affecting the function `cloudpickle.loads` of the file `ai flowclicommandsworkflow command.py`. This issue leads to deserialization and can be exploited remotely. The complexity of an attack is rather high, and the exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. **Recommendations** For flink-extended ai-flow version 0.3.1, consider disabling the `cloudpickle.loads` function as a temporary workaround until a patch is available. Restrict access to the vulnerable file `ai flowclicommandsworkflow command.py` to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** StanfordVL GibsonEnv version 0.3.1 **Description** A critical issue has been found, affecting the `cloudpickle.load` function of the file gibsonutilspposgd fuse.py. This issue leads to deserialization and can be exploited remotely. The complexity of an attack is rather high, and the exploitability is difficult. The exploit has been disclosed to the public and may be used. **Recommendations** For StanfordVL GibsonEnv version 0.3.1, consider disabling the `cloudpickle.load` function as a temporary workaround until a patch is available. Restrict access to the gibsonutilspposgd fuse.py file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** van der Schaar LAB synthcity version 0.2.9 **Description** A critical issue has been found in the function `load from file` of the component PKL File Handler, leading to deserialization. The attack may be launched remotely. The vendor was contacted and confirmed the existence of the issue. A patch is planned to be released. **Recommendations** For van der Schaar LAB synthcity version 0.2.9, consider disabling the `load from file` function of the PKL File Handler until a patch is available. Wait for the official patch release planned for February 2024.

**Name of the Vulnerable Software and Affected Versions** van der Schaar LAB TemporAI version 0.0.3 **Description** A critical vulnerability was found in the function `load from file` of the component PKL File Handler, leading to deserialization. The attack can be launched remotely. The vendor was contacted and confirmed the existence of the issue. A patch is planned to be released. **Recommendations** For van der Schaar LAB TemporAI version 0.0.3, consider disabling the `load from file` function of the PKL File Handler as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DeepFaceLab pretrained DF.wf.288res.384.92.72.22 **Description** A problematic vulnerability was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22. The issue affects an unknown function of the file mainscripts/Util.py and leads to deserialization. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DeepFaceLab pretrained DF.wf.288res.384.92.72.22 **Description** A critical vulnerability was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22. The issue affects some unknown functionality of the file DFLIMG/DFLJPG.py, leading to deserialization. The attack can be launched remotely, with a rather high complexity and difficult exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** spider-flow versions up to 0.5.0 **Description** A critical issue has been found, affecting the function `DriverManager.getConnection` of the file `src/main/java/org/spiderflow/controller/DataSourceController.java` in the API component. This issue leads to deserialization and can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For versions up to 0.5.0, consider disabling the `DriverManager.getConnection` function as a temporary workaround until a patch is available. Restrict access to the `DataSourceController.java` file to minimize the risk of exploitation. Avoid using the affected API component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** DedeCMS versions up to 5.7.100 **Description** A critical issue has been found in DedeCMS, affecting an unknown functionality of the file /include/dialog/select templets post.php. The manipulation of the `activepath` argument leads to absolute path traversal. **Recommendations** For DedeCMS versions up to 5.7.100, update to a version later than 5.7.100 to resolve the issue. As a temporary workaround, consider restricting access to the /include/dialog/select templets post.php file until a patch is available. Avoid manipulating the `activepath` argument in the affected file to minimize the risk of exploitation.