An issue was discovered in function sync_tree in hetero_decision_tree_guest.py in WeBank FATE (Federated AI Technology Enabler) 0.1 through 1.4.2 allows attackers to read sensitive information during the training process of machine learning joint modeling.
References
Link | Resource |
---|---|
https://github.com/FederatedAI/FATE/commit/6feccf6d752184a6f9365d56a76fe627983e7139 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-06-16T20:36:30
Updated: 2022-06-16T20:36:30
Reserved: 2020-09-14T00:00:00
Link: CVE-2020-25459
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-16T21:15:07.713
Modified: 2022-06-28T17:06:16.787
Link: CVE-2020-25459
JSON object: View
Redhat Information
No data.
CWE