Browse all 4 CVE security advisories affecting flyteorg. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Flyteorg is an open-source workflow orchestration platform designed for building and managing complex data and ML pipelines. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. The platform's security posture has been challenged by insufficient input validation and improper access controls in its web interface. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities in core components suggests a need for rigorous security testing and prompt patching by organizations implementing the solution.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-24856 | Server-Side Request Forgery in FlyteConsole — flyteconsoleCWE-918 | 9.1 | Critical | 2022-05-17 |
This page lists every published CVE security advisory associated with flyteorg. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.