Joblib_project Joblib

2 CVEs affecting Joblib_project Joblib. Latest disclosed: 2024-05-17. Critical: 0, High: 2.

Top CVEs affecting Joblib_project Joblib
CVESeverityScorePublishedSummary
CVE-2024-34997High7.52024-05-17joblib v1.4.2 was discovered to contain a deserialization vulnerability via the component joblib.numpy_pickle::NumpyArrayWrapper().read_array(). NOTE: this is…
CVE-2022-21797High7.32022-09-26The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due to the eval() statement.