CVE-2026-31251

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its gRPC server component. When the server starts, it loads the speech synthesis model from a user-specified directory using torch.load without enabling the...

CVE-2026-31251

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its gRPC server component. When the server starts, it loads the speech synthesis model from a user-specified directory using torch.load without enabling the...

EUVD-2026-19021

A weakness has been identified in FedML-AI FedML up to 0.8.9. Affected is the function sendMessage of the file grpcserver.py of the component gRPC server. Executing a manipulation can lead to deserialization. The attack may be performed from remote. The vendor was contacted early about this...

CA BrightStor ARCserve 11.5.2.0 (catirpc.dll) RPC Server DoS Exploit

No description provided by source. !/usr/bin/ruby Computer Associates CA Brightstor Backup Remote Procedure Call Server DoS catirpc.dll Catirpc.exe - Provides the endpoint mapper and enables RPC services for BrightStor Backup products. 7c.350: Access violation - code c0000005 !!! second chance !!...