3.7.7.dev1
7 years ago
1 days ago
Known vulnerabilities in the prefect package. This does not include vulnerabilities belonging to this package’s dependencies.
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Incorrect Authorization due to improper handling of URL path exemptions in the authentication middleware. An attacker can gain unauthorized access to sensitive information by creating resources with names ending in How to fix Incorrect Authorization? Upgrade | [,3.6.22.dev7) |
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Arbitrary Argument Injection via the How to fix Arbitrary Argument Injection? There is no fixed version for | [0,) |
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Arbitrary Argument Injection via the For remote code execution by injecting a payload such as
How to fix Arbitrary Argument Injection? Upgrade | [,3.6.25.dev7) |
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition in the How to fix Time-of-check Time-of-use (TOCTOU) Race Condition? Upgrade | [,3.6.28.dev2) |
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Improper Authentication in the health check middleware API, which relies on an How to fix Improper Authentication? Upgrade | [,3.6.22.dev7) |
prefect is a Prefect is a new workflow management system, designed for modern infrastructure and powered by the open-source Prefect Core workflow engine. Users organize Tasks into Flows, and Prefect takes care of the rest. Affected versions of this package are vulnerable to Missing Authentication for Critical Function at the How to fix Missing Authentication for Critical Function? Upgrade | [,3.6.14.dev5) |