pkg:PyPI/horovod

All known vulnerabilities

• CRITICAL9.8CVE-2026-31234Horovod contains an insecure deserialization vulnerability in its KVStore HTTP server component
  from 0, <= 0.28.1
• CRITICAL9.8CVE-2024-10190Horovod Vulnerable to Command Injection
  from 0, <= 0.28.1
• HIGH8.2CVE-2022-0315Use of insecure temporary file in Horovod
  from 0, < 0.24.0
• HIGH8.2Use of insecure temporary file in Horovod
  from 0, < b96ecae4dc69fc0a83c7c2d3f1dde600c20a1b41 | from 0, < 0.24.0