← Back

Clearml Enterprise Server

clearml_enterprise_server

Vendor: Clear • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-43779
1Clear
1Clearml Enterprise Server
Sep 5, 2025
Feb 6, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been previously disabled, poss...Show more
An information disclosure vulnerability exists in the Vault API functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to reading vaults that have been previously disabled, possibly leaking sensitive credentials. An attacker can send a series of HTTP requests to trigger this vulnerability.Show less
CVE-2024-39272
1Clear
1Clearml Enterprise Server
Sep 5, 2025
Feb 6, 2025
N/A· v4
8.2 HIGH· v3
N/A· v2
A cross-site scripting (xss) vulnerability exists in the dataset upload functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to an arbitrary html code. An attacker can send a...Show more
A cross-site scripting (xss) vulnerability exists in the dataset upload functionality of ClearML Enterprise Server 3.22.5-1533. A specially crafted HTTP request can lead to an arbitrary html code. An attacker can send a series of HTTP requests to trigger this vulnerability.Show less