Combust Mleap
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Combust Mleap.
By the Year
In 2026 there have been 0 vulnerabilities in Combust Mleap. Mleap did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 9.80 |
It may take a day or so for new Mleap vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Combust Mleap Security Vulnerabilities
TensorFlow Java Zip Slip via FileUtil.extract() in SavedModel load
CVE-2023-5245
9.8 - Critical
- November 15, 2023
FileUtil.extract() enumerates all zip file entries and extracts each file without validating whether file paths in the archive are outside the intended directory. When creating an instance of TensorflowModel using the saved_model format and an exported tensorflow model, the apply() function invokes the vulnerable implementation of FileUtil.extract(). Arbitrary file creation can directly lead to code execution
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Combust Mleap or by Combust? Click the Watch button to subscribe.
