CVE-2023-43654

Vulnerability updated 8 months ago (2024-01-10T14:25:38.971Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2023-43654 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 0)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Vulnerabilities

To see the evidence that has resulted in these vulnerability associations, create a free account

ID	Type	Votes	Profile Description
Shelltorch	Unspecified	2	ShellTorch is a critical vulnerability in the TorchServe software, as identified by Israeli security firm Oligo. The flaw, which has been assigned two CVE identifiers (CVE-2022-1471 and CVE-2023-43654), allows for server-side request forgery (SSRF) and Java deserialization remote code execution (RCE

Source Document References

Information about the CVE-2023-43654 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
BankInfoSecurity	2 months ago	Patched Weeks Ago, RCE Bug in AI Tool Still a 'Probllama'
CERT-EU	a year ago	This Week In Security: Browser Exploits, Play Protect, And Turn ON Your Firewall!
CERT-EU	a year ago	PyTorch Model Server Registration / Deserialization Remote Code Execution - KizzMyAnthia.com
CERT-EU	a year ago	Cyber Security Today, Week in Review for the week ending Friday, October 6, 2023 \| IT World Canada News
CERT-EU	a year ago	Cyber Security Week in Review: October 6, 2023
CERT-EU	a year ago	Critical 'ShellTorch' Flaws Light Up Open Source AI Users, Like Google
CERT-EU	a year ago	ShellTorch Flaw Exposes Thousands of AI Servers to RCE Attacks
CERT-EU	a year ago	AI server takeovers likely with critical TorchServe vulnerabilities
BankInfoSecurity	a year ago	Amazon Web Services Warns of TorchServe Flaws
CERT-EU	a year ago	ShellTorch Vulnerabilities Expose PyTorch Models to Remote Code Execution
CERT-EU	a year ago	ShellTorch vulns expose PyTorch models to remote code execution
CERT-EU	a year ago	Cyber Security Today, Oct. 4, 2023 – Critical vulnerabilities found in Linux and TorchServe \| IT World Canada News
CERT-EU	a year ago	Critical TorchServe Flaws Could Expose AI Infrastructure of Major Companies
CERT-EU	a year ago	ShellTorch flaws expose AI servers to code execution attacks
CERT-EU	a year ago	Warning: PyTorch Models Vulnerable to Remote Code Execution via ShellTorch