All Versions
Vulnerabilities (Public)
Known vulnerabilities and security issues detected in the extension's dependencies and code.
| Vulnerability ID | Advisory | Affected Versions | |||
|---|---|---|---|---|---|
| CVE-2020-13092 | scikit-learn Deserialization of Untrusted Data | Critical | – | – | <= 0.23.0 |
| CVE-2020-28975 | * Disputed * Scikit-learn 1.1.0rc1 includes a fix for CVE-2020-28975: svm_predict_values in svm.cpp in Libsvm v324, as used in scikit-learn and other products, allows attackers to cause a denial of se… | High | – | – | >=0.11,<1.1.0rc1 |
| CVE-2024-5206 | A sensitive data leakage vulnerability was identified in affected versions of scikit-learn TfidfVectorizer. The vulnerability arises from the unexpected storage of all tokens present in the training d… | Medium | – | – | <1.5.0 |
Safety Discovered Vulnerabilities
Additional security issues found by Safety, exclusive to our platform.