Description

TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production.

In the default configuration, TorchServe is vulnerable to an SSRF vulnerability. An attacker could exploit this vulnerability to compromise the server.

Remediation

Set secure values for the allowed_urls option and the model URL in the TorchServe

References

TorchServe SSRF

ShellTorch: Multiple Critical Vulnerabilities in PyTorch Model Server (TorchServe)

Related Vulnerabilities

Openfire Path Traversal (CVE-2023-32315)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3597)

ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-7202)

MySQL CVE-2015-4910 Vulnerability (CVE-2015-4910)

XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-36094)

Severity

Critical

Classification

CVE-2023-43654 CWE-918 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Tags

Acumonitor SSRF Known Vulnerabilities