Lucene search
K

43 matches found

Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-58116 LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path

LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI access to execute arbitrary Python code by supplying a malicious model path in the Chat or Training interfaces. The application passes user-supplied model path input unvalidated into...

9.8CVSS0.00515EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2 days ago4 views

CVE-2026-58116

LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI access to execute arbitrary Python code by supplying a malicious model path in the Chat or Training interfaces. The application passes user-supplied model path input unvalidated into...

9.8CVSS6.6AI score0.00515EPSS
Exploits2References3
Snyk
Snyk
added 2025/10/07 10:8 p.m.6 views

Server-side Request Forgery (SSRF)

Overview llamafactory is an Easy-to-use LLM fine-tuning framework Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the processrequest function, which processes incoming content URLs without proper validation or sanitization. An attacker can access internal...

8.1CVSS6.6AI score0.00342EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/10/07 7:1 p.m.2 views

CVE-2025-61784 LLaMA Factory's Chat API has Critical SSRF and LFI Vulnerabilities

LLaMA-Factory is a tuning library for large language models. Prior to version 0.9.4, a Server-Side Request Forgery SSRF vulnerability in the chat API allows any authenticated user to force the server to make arbitrary HTTP requests to internal and external networks. This can lead to the exposure ...

7.6CVSS6.1AI score0.00342EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 7:1 p.m.5 views

EUVD-2025-32903

LLaMA-Factory is a tuning library for large language models. Prior to version 0.9.4, a Server-Side Request Forgery SSRF vulnerability in the chat API allows any authenticated user to force the server to make arbitrary HTTP requests to internal and external networks. This can lead to the exposure ...

7.6CVSS6AI score0.00342EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/10/07 7:1 p.m.10 views

CVE-2025-61784 LLaMA Factory's Chat API has Critical SSRF and LFI Vulnerabilities

LLaMA-Factory is a tuning library for large language models. Prior to version 0.9.4, a Server-Side Request Forgery SSRF vulnerability in the chat API allows any authenticated user to force the server to make arbitrary HTTP requests to internal and external networks. This can lead to the exposure ...

7.6CVSS0.00342EPSS
Exploits1References2
CVE
CVE
added 2025/10/07 7:1 p.m.18 views

CVE-2025-61784

LLaMA-Factory's chat API contains SSRF and LFI in the _process_request function (src/llamafactory/api/chat.py). For image_url, video_url, and audio_url, if a URL is not a base64 data URI or local file path, the code fetches the URL with requests.get(url, stream=True).raw without validation, enabl...

8.1CVSS6.1AI score0.00342EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.5 views

LLaMA-Factory 安全漏洞

LLaMA-Factory is a fine-tuned large-scale language model by a Chinese hoshi-hiyouga individual developer. A security vulnerability exists in LLaMA-Factory versions prior to 0.9.4, which stems from the processrequest function not validating or cleaning up URLs, which could lead to server-side...

8.1CVSS6.2AI score0.00342EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-12156

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00232EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-3357

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.02273EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19200

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.0103EPSS
Exploits1References4
Snyk
Snyk
added 2025/08/01 6:30 a.m.3 views

Deserialization of Untrusted Data

Overview llamafactory is an Easy-to-use LLM fine-tuning framework Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the Checkpoint path parameter in the WebUI interface during the training process. An attacker can exploit this vulnerability by supplying a...

9.8CVSS7.5AI score0.0103EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/06/28 3:17 p.m.7 views

CVE-2025-53002

LLaMA-Factory is a tuning library for large language models. A remote code execution vulnerability was discovered in LLaMA-Factory versions up to and including 0.9.3 during the LLaMA-Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards,...

9.8CVSS8.7AI score0.0103EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2025/06/27 3:27 p.m.12 views

LLaMA-Factory allows Code Injection through improper vhead_file safeguards

Summary A critical remote code execution vulnerability was discovered during the Llama Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards, allowing malicious attackers to execute arbitrary malicious code on the host system simply by passi...

9.8CVSS8.1AI score0.0103EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/06/27 3:27 p.m.6 views

GHSA-XJ56-P8MM-QMXJ LLaMA-Factory allows Code Injection through improper vhead_file safeguards

Summary A critical remote code execution vulnerability was discovered during the Llama Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards, allowing malicious attackers to execute arbitrary malicious code on the host system simply by passi...

8.3CVSS6.7AI score0.0103EPSS
Exploits1References4
NVD
NVD
added 2025/06/26 3:15 p.m.8 views

CVE-2025-53002

LLaMA-Factory is a tuning library for large language models. A remote code execution vulnerability was discovered in LLaMA-Factory versions up to and including 0.9.3 during the LLaMA-Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards,...

9.8CVSS0.0103EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/06/26 2:40 p.m.7 views

CVE-2025-53002 LLaMA-Factory Remote Code Execution (RCE) Vulnerability

LLaMA-Factory is a tuning library for large language models. A remote code execution vulnerability was discovered in LLaMA-Factory versions up to and including 0.9.3 during the LLaMA-Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards,...

8.3CVSS8.6AI score0.0103EPSS
Exploits1References3
CVE
CVE
added 2025/06/26 2:40 p.m.41 views

CVE-2025-53002

Summary of CVE-2025-53002 (LLaMA-Factory) : A remote code execution vulnerability was reported in LLaMA-Factory up to version 0.9.3 during training. The root cause is loading the vhead_file without the secure parameter weights_only=True, enabling an attacker to execute arbitrary code by supplying...

9.8CVSS8.6AI score0.0103EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2025/06/26 2:40 p.m.6 views

CVE-2025-53002 LLaMA-Factory Remote Code Execution (RCE) Vulnerability

LLaMA-Factory is a tuning library for large language models. A remote code execution vulnerability was discovered in LLaMA-Factory versions up to and including 0.9.3 during the LLaMA-Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards,...

8.3CVSS8.2AI score0.0103EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/26 2:40 p.m.12 views

CVE-2025-53002 LLaMA-Factory Remote Code Execution (RCE) Vulnerability

LLaMA-Factory is a tuning library for large language models. A remote code execution vulnerability was discovered in LLaMA-Factory versions up to and including 0.9.3 during the LLaMA-Factory training process. This vulnerability arises because the vheadfile is loaded without proper safeguards,...

8.3CVSS0.0103EPSS
Exploits1References3
Rows per page
Query Builder