Vulnerability Database
Blog
FAQ
Docs
GO-2024-2705
See a problem?
Source
https://pkg.go.dev/vuln/GO-2024-2705
Import Source
https://vuln.go.dev/ID/GO-2024-2705.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2024-2705
Aliases
CVE-2024-3135
GHSA-jhvf-7c85-3c9g
Published
2024-06-05T15:10:52Z
Modified
2024-06-05T16:43:15.641403Z
Summary
LocalAI cross-site request forgery vulnerability in github.com/go-skynet/LocalAI
Details
LocalAI cross-site request forgery vulnerability in github.com/go-skynet/LocalAI
References
https://github.com/advisories/GHSA-jhvf-7c85-3c9g
https://nvd.nist.gov/vuln/detail/CVE-2024-3135
https://huntr.com/bounties/7afdc4d3-4b68-45ea-96d0-cf9ed3712ae8
Affected packages
Go
/
github.com/go-skynet/LocalAI
Package
Name
github.com/go-skynet/LocalAI
View open source insights on deps.dev
Purl
pkg:golang/github.com/go-skynet/LocalAI
Affected ranges
Type
SEMVER
Events
Introduced
0
Unknown introduced version / All previous versions are affected
GO-2024-2705 - OSV