CVE-2024-57000 Affecting kserve package, versions <0.14.1-r2
Threat Intelligence
Exploit maturity not defined.
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-CHAINGUARDLATEST-KSERVE-8720550
- published13 Feb 2025
- disclosed11 Feb 2025
Introduced: 11 Feb 2025
NewCVE-2024-57000 (opens in a new tab)How to fix?
Upgrade Chainguard kserve to version 0.14.1-r2 or higher.
NVD Description
Note: Versions mentioned in the description apply only to the upstream kserve package and not the kserve package as distributed by Chainguard.
See How to fix? for Chainguard relevant fixed versions and status.
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-48022. Reason: This candidate is a duplicate of CVE-2023-48022. Notes: All CVE users should reference CVE-2023-48022 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.