The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning (FL) and Multi-Party Computation (MPC). Prior to 4.2.0, authenticated users could inject code into algorithm environment variables, resulting in remote code execution. This vulnerability is patched in 4.2.0.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HVantage6
APPVantage6< 4.2.0
Related vulnerabilities
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federated Learning (FL) and M...
vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the...
vantage6 is an open source framework built to enable, manage and deploy privacy enhancing technologies like Fe...
vantage6 is an open source framework built to enable, manage and deploy privacy enhancing technologies like Fe...
The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning (F...