Lucene search
K

110 matches found

CNNVD
CNNVD
added 2025/03/19 12:0 a.m.4 views

Applio 路径遍历漏洞

Applio is an open source AI speech conversion tool from Spanish AI Hispano. A path traversal vulnerability exists in Applio 3.2.8-bugfix and earlier versions, which stems from an arbitrary file deletion issue in core.py, where the outputttspath parameter of tts.py accepts arbitrary user input and...

9.1CVSS6.9AI score0.00513EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.4 views

PT-2025-11982 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: The issue affects a voice conversion tool and may lead to writing arbitrary files on the server. It can also be used in conjunction with an unsafe deserialization to achieve remote code...

9.8CVSS7.3AI score0.013EPSS
Exploits1References12
CNNVD
CNNVD
added 2025/03/19 12:0 a.m.5 views

Applio 代码问题漏洞

Applio is an open source AI speech conversion tool from Spanish AI Hispano. A code issue vulnerability exists in Applio 3.2.8-bugfix and prior versions, which stems from an insecure deserialization issue in modelblender.py that could lead to remote code execution...

9.8CVSS7.8AI score0.00845EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.8 views

PT-2025-11978 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool that is vulnerable to server-side request forgery SSRF and file write in model download.py. The blind SSRF allows for sending requests on behalf of the Applio serv...

9.3CVSS7.4AI score0.00531EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.5 views

PT-2025-11964 · Applio +1 · Applio +1

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in the model information.py file. The model name variable in model information.py accepts user-supplied input, such as ...

9.8CVSS6.8AI score0.00845EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.4 views

PT-2025-11981 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in model blender.py lines 20 and 21. The functions model fusion a and model fusion b from voice blender.py accept...

9.8CVSS6.9AI score0.00845EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.5 views

PT-2025-11976 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool. It is susceptible to server-side request forgery SSRF and file write vulnerabilities in model download.py line 156 in version 3.2.7. The blind SSRF allows sending...

9.3CVSS7.3AI score0.00531EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.4 views

PT-2025-11977 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.7 and prior Description: Applio is a voice conversion tool vulnerable to server-side request forgery SSRF and file write within the model download.py file line 143 in version 3.2.7. The SSRF allows sending requests on beha...

9.3CVSS7.3AI score0.00531EPSS
Exploits0References12
CNNVD
CNNVD
added 2025/03/19 12:0 a.m.4 views

Applio 代码问题漏洞

Applio is an open source AI voice conversion tool from Spanish AI Hispano. A code issue vulnerability exists in Applio 3.2.7 and earlier versions, which stems from a server-side request forgery and file write issue in modeldownload.py, and could lead to an attacker sending requests on behalf of t...

9.3CVSS8AI score0.00531EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/03/19 12:0 a.m.5 views

PT-2025-11980 · Applio · Applio

Name of the Vulnerable Software and Affected Versions: Applio versions 3.2.8-bugfix and prior Description: Applio is a voice conversion tool vulnerable to unsafe deserialization in infer.py. This issue can lead to remote code execution. A fix was available on the main branch of the Applio...

9.8CVSS7.2AI score0.00896EPSS
Exploits0References14
Rows per page
Query Builder