Zero-Shot SC Foundation GitHub Repository Contains Vulnerable Component

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.8

Zero-Shot SC Foundation GitHub Repository Contains Vulnerable Component

CVE-2026-23654

Summary

An outdated component in the zero-shot-scfoundation GitHub repository could allow an attacker to execute malicious code from the internet, potentially leading to unauthorized access to your system. This is a serious concern because it can be exploited by hackers to gain control of your system. You should review and update your dependencies to ensure you have the latest, patched version of zero-shot-scfoundation.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
microsoft	zero-shot-scfoundation	<= 0.1.1	–

Original title

Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unauthorized attacker to execute code over a network.

Original description

Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unauthorized attacker to execute code over a network.

nvd CVSS3.1 8.8

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23654

Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026