Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/05/12 12:0 a.m.10 views

CVE-2026-31218

The CVE concerns the optimate project’s neural_magic_training.py, where _load_model() deserializes a state_dict.pt with torch.load() without enabling weights_only=True. This enables deserialization of arbitrary Python objects via Pickle, allowing a remote attacker to provide a crafted state_dict....

8.8CVSS6.3AI score0.00164EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/12 12:0 a.m.6 views

PT-2026-40057

The load model function in the neural magic training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When loading a model state dictionary from a state dict.pt file via torch.load, the function does...

6.3AI score0.00164EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/12 12:0 a.m.28 views

CVE-2026-31218

The loadmodel function in the neuralmagictraining.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When loading a model state dictionary from a statedict.pt file via torch.load, the function does not...

0.00164EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/12 12:0 a.m.3 views

CVE-2026-31218

The loadmodel function in the neuralmagictraining.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When loading a model state dictionary from a statedict.pt file via torch.load, the function does not...

6.3AI score0.00164EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2023/10/12 1:24 p.m.0 views

mariadb: assertion failure at table->get_ref_count() == 0 in dict0dict.cc

MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table-getrefcount == 0 in dict0dict.cc...

7.5CVSS7.3AI score0.00176EPSS
Exploits1References4
0day.today
0day.todayadded 2020/07/19 12:0 a.m.623 views

Plex Unpickle Dict Windows Remote Code Execution Exploit

This Metasploit module exploits an authenticated Python unsafe pickle.load of a Dict file. An authenticated attacker can create a photo library and add arbitrary files to it. After setting the Windows only Plex variable LocalAppDataPath to the newly created photo library, a file named Dict will b...

7.2CVSS7.8AI score0.35219EPSS
Exploits4
BDU FSTEC
BDU FSTECadded 2016/07/19 12:0 a.m.1 views

The vulnerability of the libxml2 library, which allows a hacker to trigger a service failure

The vulnerability of the xmlDictComputeFastQKey function in the dict.c file of the libxml2 library is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability could allow an attacker to cause a service failure remotely...

5CVSS7.8AI score0.01161EPSS
Exploits0References10Affected Software2
Rows per page
Query Builder