CNNVD-202601-032 Information
Jan 01, 2026
cve
CNNVD ID
CNNVD-202601-032
Related CVE
- CNNVD Published: 2026-01-01
Description (Chinese)
feast是Feast开源的一个 AI/ML 开源功能库。 feast 0.53.0版本存在代码问题漏洞,该漏洞源于YAML反序列化不当,可能导致远程代码执行。
Description (English)
Fast is an AI/ML open-source library of the Fast Open Source. Version 09.53.0 contains a code problem loophole, which stems from the miscalculation of YAML, which may lead to remote code implementation.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
Feast
Published
2026-01-01
Last Modified
2026-02-24
References
https://github.com/feast-dev/feast/commit/b2e37ff37953b68ae833f6874ab5bc510a4ca5fb https://huntr.com/bounties/46d4d585-b968-4a76-80ce-872bc5525564
Patch
https://github.com/feast-dev/feast/releases
Share on: