vantage6-node

PyPI3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting vantage6-nodepage 1 of 1

CVE-2023-28635MEDIUMCVSS 5.4EG 5.4✓ Fixed in 4.0.0
2023-10-11
vulnerable: 0.0.0 ... 4.0.0a9 (182 versions)
vantage6 is privacy preserving federated learning infrastructure. Prior to version 4.0.0, malicious users may try to get access to resources they are not allowed to see, by creating resources with integers as names. One example where this …
CVE-2023-47631HIGHCVSS 7.2EG 7.2✓ Fixed in 4.1.2
2023-11-14
vulnerable: 0.0.0 ... 4.1.1 (192 versions)
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federated Learning (FL) and Multi-Party Computation (MPC). In affected versions a node does not check if an image is allowed to run if a `parent_id` is set. A…
CVE-2024-21653MEDIUMCVSS 6.5EG 6.5✓ Fixed in 4.2.0
2024-01-30
vulnerable: 0.0.0 ... 4.2.0rc2 (196 versions)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning (FL) and Multi-Party Computation (MPC). Nodes and servers get a ssh config by default that permits root login with password authen…

Check whether vantage6-node is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for vantage6-node CVEs against the assets you own.

Start Free Scan →