A vulnerability classified as critical was found in van_der_Schaar LAB TemporAI 0.0.3. Affected by this vulnerability is the function
load_from_file
of the component PKL File Handler. The manipulation leads to deserialization.
This vulnerability is known as CVE-2024-0936. The attack can be launched remotely. Furthermore, there is an exploit available.
The vendor was contacted early and confirmed immediately the existence of the issue. A patch is planned to be released in February 2024.