CVE-2024-1748 | van_der_Schaar LAB AutoPrognosis 0.1.21 Release Note load_model_from_file deserialization

CVE-2024-1748 | van_der_Schaar LAB AutoPrognosis 0.1.21 Release Note load_model_from_file deserialization

A vulnerability classified as critical was found in van_der_Schaar LAB AutoPrognosis 0.1.21. This vulnerability affects the function load_model_from_file of the component Release Note Handler. The manipulation leads to deserialization. This vulnerability was named CVE-2024-1748. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.