CRITICAL 9.3 PyPI
GHSA-3pww-qvr8-6mhp · CVE-2023-6021 Ray Path Traversal vulnerability
수정: 2025. 1. 9.
package
PyPI / ray
pkg:pypi/ray
CRITICAL 9.3 PyPI
GHSA-6cxr-8q3m-jwrr · CVE-2023-6020 Ray Missing Authorization vulnerability
수정: 2025. 1. 9.
CRITICAL 9.8 PyPI
GHSA-6wgj-66m2-xxp2 · CVE-2023-48022 Ray has arbitrary code execution via jobs submission API
수정: 2026. 2. 4.
CRITICAL PyPI
GHSA-gx77-xgc2-4888 · CVE-2025-34351 Ray's New Token Authentication is Disabled By Default
수정: 2026. 2. 4.
CRITICAL 9.8 PyPI
GHSA-h3xg-wv58-5p43 · CVE-2023-6019 Ray OS Command Injection vulnerability
수정: 2025. 1. 9.
HIGH 7.5 PyPI
GHSA-j3mh-qmjj-xp83 · CVE-2026-32981, PYSEC-2026-130 Ray Dashboard is vulnerable to path traversal through its static file handling mechanism
수정: 2026. 6. 9.
HIGH PyPI
GHSA-mw35-8rx3-xf9r · CVE-2026-41486 Ray: Remote Code Execution via Parquet Arrow Extension Type Deserialization
수정: 2026. 5. 13.
CRITICAL PyPI
GHSA-q279-jhrf-cc6v · CVE-2025-62593 Ray is vulnerable to Critical RCE via Safari & Firefox Browsers through DNS Rebinding Attack
수정: 2026. 2. 4.
MEDIUM 5.9 PyPI
GHSA-q5fh-2hc8-f6rq · CVE-2026-27482 Ray dashboard DELETE endpoints allow unauthenticated browser-triggered DoS (Serve shutdown / job deletion)
수정: 2026. 2. 24.
MEDIUM 6.4 PyPI
GHSA-w4rh-fgx7-q63m · CVE-2025-1979, PYSEC-2025-23 ray vulnerable to Insertion of Sensitive Information into Log File
수정: 2026. 2. 4.
— PyPI
PYSEC-2025-23 · CVE-2025-1979, GHSA-w4rh-fgx7-q63m 수정: 2026. 6. 10.
HIGH 7.5 PyPI
PYSEC-2026-130 · CVE-2026-32981, GHSA-j3mh-qmjj-xp83 수정: 2026. 6. 10.