A vulnerability was found in joblib 1.4.2. It has been classified as critical. This affects the function
joblib.numpy_pickle::NumpyArrayWrapper.read_array
. The manipulation leads to deserialization.
This vulnerability is uniquely identified as CVE-2024-34997. Access to the local network is required for this attack to succeed. There is no exploit available.