CNNVD-202601-4701 Information
Jan 28, 2026
cve
CNNVD ID
CNNVD-202601-4701
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
Oneflow是Oneflow开源的一个深度学习框架。 Oneflow v0.9.0版本存在安全漏洞,该漏洞源于flow.cuda.get_device_capability()组件存在GPU设备ID验证缺陷,可能导致拒绝服务攻击。
Description (English)
OneFlow is an in-depth learning framework for OneFlow open source. OneFlow v0.9.0 has a security loophole, which stems from the GPU ID verification defect of the Flow.cuda.get device capability() component, which may lead to a denial of service attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Oneflow
Published
2026-01-28
Last Modified
2026-02-24
References
https://github.com/Oneflow-Inc/oneflow/issues/10660 http://oneflow.com https://github.com/Daisy2ang https://access.redhat.com/security/cve/cve-2025-70999
Patch
https://github.com/Oneflow-Inc/oneflow/releases
Share on: