You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

YAML Metadata Warning:empty or missing yaml metadata in repo card

Check out the documentation for more information.

PoC: LightGBM OOB Read via split_feature Index

SECURITY RESEARCH ONLY

This LightGBM model file has split_feature=99999 when only 1 feature exists (max_feature_idx=0). During prediction, GetLeaf() uses this as an index into the feature_values array, causing OOB heap read. During FeatureImportance(), it causes OOB heap write.

Affected: include/LightGBM/tree.h:706, src/boosting/gbdt_model_text.cpp:646 Trigger: lgb.Booster(model_file="malicious_model.txt").predict(data)

Submitted by Ryan @ Fan Pier Labs

Downloads last month: -; Downloads are not tracked for this model. How to track

Inference Providers NEW

This model isn't deployed by any Inference Provider. 🙋 Ask for provider support