zenml vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-8406Mediumzenml: ZenML is vulnerable to Path Traversal through its `PathMaterializer` classCVE-2024-9340Highzenml: ZenML unauthenticated DoS via Multipart BoundryCVE-2024-4311Mediumzenml: Missing ratelimit on passwrod resets in zenmlCVE-2024-5062Mediumzenml: Reflected Cross-Site Scripting (XSS) in zenmlCVE-2024-4460Mediumzenml: Improper line feed handling in zenmlCVE-2024-4680Lowzenml: zenml-io/zenml does not expire the session after password resetCVE-2024-2383Mediumzenml: Clickjacking in zenmlCVE-2024-2213Lowzenml: Improper authentication in zenmlCVE-2024-2171Lowzenml: Cross site scripting in zenmlCVE-2024-2032Lowzenml: Race condition in zenmlCVE-2024-2035Mediumzenml: Improper authorization in zenmlCVE-2024-2260Mediumzenml: zenml Session Fixation vulnerabilityCVE-2024-2083Criticalzenml: Directory traversal in zenmlCVE-2024-25723Highzenml: ZenML Server Remote Privilege Escalation Vulnerability

Stop the waste.
Protect your environment with Kodem.