Msaroufim

**Name of the Vulnerable Software and Affected Versions** TorchServe versions 0.1.0 through 0.9.0 **Description** The issue allows uploading potentially harmful archives that contain files extracted to any location on the filesystem within the process permissions, using the model/workflow management API. This could aid third-party actors in hiding harmful code in open-source/public models, which can be downloaded from the internet, and take advantage of machines running TorchServe. The ZipSlip issue has been fixed by validating the paths of files contained within a zip archive before extracting them. **Recommendations** For TorchServe versions 0.1.0 through 0.9.0, update to TorchServe release 0.9.0 or later, which includes fixes to address the ZipSlip vulnerability. As a temporary workaround, consider validating the paths of files contained within a zip archive before extracting them to prevent potentially harmful files from being uploaded. Restrict access to the model/workflow management API to minimize the risk of exploitation.