CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2025/07/15 9:15 p.m.•13 views

CVE-2025-49835

GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is a command injection vulnerability in webui.py openasr function. asrinpdir and a number of other variables takes user input, which is passed to the openasr function, which concatenates the...

9.8CVSS0.03377EPSS

Exploits1References5

NVD•added 2025/05/05 6:15 p.m.•14 views

CVE-2025-43846

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckptpath1 variable takes user input e.g. a path to a model and passes it to the showinfo function in processckpt.py, which uses it to loa...

9.8CVSS0.00766EPSS

Exploits0References4

Positive Technologies•added 2025/05/05 12:0 a.m.•5 views

PT-2025-19749 · Unknown · Retrieval-Based-Voice-Conversion-Webui

Name of the Vulnerable Software and Affected Versions: Retrieval-based-Voice-Conversion-WebUI versions 2.2.231006 and prior Description: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. The ckpt path1 variable takes user input, such as a path to a model, and...

9.8CVSS7.1AI score0.00766EPSS

Exploits0References11

CNNVD•added 2025/05/05 12:0 a.m.•5 views

Retrieval-based-Voice-Conversion-WebUI 代码问题漏洞

Retrieval-based-Voice-Conversion-WebUI is an open source voice training modeling tool from RVC-Project. A code issue vulnerability exists in Retrieval-based-Voice-Conversion-WebUI version 2.2.231006 and earlier, which stems from improper handling of the modelchoose variable, and could lead to...

9.8CVSS7.8AI score0.008EPSS

Exploits0References5

CNNVD•added 2025/05/05 12:0 a.m.•4 views

Retrieval-based-Voice-Conversion-WebUI 代码问题漏洞

9.8CVSS7.9AI score0.00766EPSS

Exploits0References5

CNNVD•added 2025/05/05 12:0 a.m.•4 views

Retrieval-based-Voice-Conversion-WebUI 代码注入漏洞

Retrieval-based-Voice-Conversion-WebUI is an open source voice training modeling tool from RVC-Project. A code injection vulnerability exists in Retrieval-based-Voice-Conversion-WebUI version 2.2.231006 and earlier, which stems from improper handling of the ckptpath2 variable and could lead to...

9.8CVSS8.2AI score0.00793EPSS

Exploits0References5

Positive Technologies•added 2025/05/05 12:0 a.m.•7 views

PT-2025-19738 · Unknown · Retrieval-Based-Voice-Conversion-Webui

Name of the Vulnerable Software and Affected Versions: Retrieval-based-Voice-Conversion-WebUI versions 2.2.231006 and prior Description: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. The variables exp dir1, np7, trainset dir4, and sr2 take user input and pass...

9.8CVSS6.5AI score0.02103EPSS

Exploits0References14

CNNVD•added 2025/05/05 12:0 a.m.•5 views

Retrieval-based-Voice-Conversion-WebUI 代码问题漏洞

9.8CVSS7.8AI score0.008EPSS

Exploits0References5

CNNVD•added 2025/05/05 12:0 a.m.•4 views

Retrieval-based-Voice-Conversion-WebUI 命令注入漏洞

Retrieval-based-Voice-Conversion-WebUI is an open source voice training modeling tool from RVC-Project. A command injection vulnerability exists in Retrieval-based-Voice-Conversion-WebUI version 2.2.231006 and earlier, which stems from command injection...

9.8CVSS7.6AI score0.02103EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by