autoprognosis@0.1.8 vulnerabilities

A system for automating the design of predictive modeling pipelines tailored for clinical prognosis.

Direct Vulnerabilities

Known vulnerabilities in the autoprognosis package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Deserialization of Untrusted Data

autoprognosis is an A system for automating the design of predictive modeling pipelines tailored for clinical prognosis.

Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to the load_model_from_file function. An attacker can execute unauthorized code or commands by submitting crafted input that leads to deserialization of untrusted data.

How to fix Deserialization of Untrusted Data?

There is no fixed version for autoprognosis.

[0,)