Vulnerability	Vulnerable Version
M Arbitrary File Write via Archive Extraction (Zip Slip) raxe is a RAXE Community Edition - AI Security for Everyone. 460+ threat detection rules, L2 CPU-based ML, always free. Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) in the `_extract_tarball()` function in `model_downloader.py`. How to fix Arbitrary File Write via Archive Extraction (Zip Slip)? Upgrade `raxe` to version 0.3.0 or higher.	[,0.3.0)
M Regular Expression Denial of Service (ReDoS) raxe is a RAXE Community Edition - AI Security for Everyone. 460+ threat detection rules, L2 CPU-based ML, always free. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) in `matcher.py`, which may attempt to test pattern matches indefinitely. How to fix Regular Expression Denial of Service (ReDoS)? Upgrade `raxe` to version 0.3.0 or higher.	[,0.3.0)

Arbitrary File Write via Archive Extraction (Zip Slip)

raxe is a RAXE Community Edition - AI Security for Everyone. 460+ threat detection rules, L2 CPU-based ML, always free.

Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) in the _extract_tarball() function in model_downloader.py.

How to fix Arbitrary File Write via Archive Extraction (Zip Slip)?

Upgrade raxe to version 0.3.0 or higher.

[,0.3.0)

Regular Expression Denial of Service (ReDoS)

raxe is a RAXE Community Edition - AI Security for Everyone. 460+ threat detection rules, L2 CPU-based ML, always free.

Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) in matcher.py, which may attempt to test pattern matches indefinitely.

How to fix Regular Expression Denial of Service (ReDoS)?

Upgrade raxe to version 0.3.0 or higher.

[,0.3.0)

Go back to all versions of this package