Lablup Backendai
3 CVEs affecting Lablup Backendai. Latest disclosed: 2025-06-09. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-49652 | Critical | 9.8 | 2025-06-09 | Missing Authentication in the registration feature of Lablup's BackendAI allows arbitrary users to create user accounts that can access private data even when… |
CVE-2025-49651 | High | 8.1 | 2025-06-09 | Missing Authorization in Lablup's BackendAI allows attackers to takeover all active sessions; Accessing, stealing, or altering any data accessible in the sessi… |
CVE-2025-49653 | High | 8.0 | 2025-06-09 | Exposure of sensitive data in active sessions in Lablup's BackendAI allows attackers to retrieve credentials for users on the management platform. |