{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-27T15:01:56.398","vulnerabilities":[{"cve":{"id":"CVE-2024-45595","sourceIdentifier":"security-advisories@github.com","published":"2024-09-10T16:15:21.970","lastModified":"2026-06-17T07:54:32.253","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"D-Tale is a visualizer for Pandas data structures. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. Users should upgrade to version 3.14.1 where the \"Custom Filter\" input is turned off by default."},{"lang":"es","value":"D-Tale es un visualizador de estructuras de datos de Pandas. Los usuarios que alojan D-Tale públicamente pueden ser vulnerables a la ejecución remota de código, lo que permite a los atacantes ejecutar código malicioso en el servidor. Los usuarios deben actualizar a la versión 3.14.1, donde la entrada \"Filtro personalizado\" está desactivada de forma predeterminada."}],"affected":[{"source":"security-advisories@github.com","affectedData":[{"vendor":"man-group","product":"dtale","versions":[{"version":"<  3.14.1","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-09-10T18:56:46.364218Z","id":"CVE-2024-45595","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:man:d-tale:*:*:*:*:*:*:*:*","versionEndExcluding":"3.14.1","matchCriteriaId":"8D13C5E8-29D1-4532-88C1-826651CDA34E"}]}]}],"references":[{"url":"https://github.com/man-group/dtale#custom-filter","source":"security-advisories@github.com","tags":["Product"]},{"url":"https://github.com/man-group/dtale/commit/b6e30969390520d1400b55acbb13e5487b8472e8","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/man-group/dtale/security/advisories/GHSA-pw44-4h99-wqff","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}}]}