Lucene search
+L

6 matches found

nvd
nvd
added 2026/03/03 3:16 p.m.10 views

CVE-2025-57622

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loadsrequest.getdata component...

9.8CVSS0.00497EPSS
Exploits0References2
cvelist
cvelist
added 2026/03/03 12:0 a.m.20 views

CVE-2025-57622

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loadsrequest.getdata component...

0.00497EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/03/03 12:0 a.m.0 views

CVE-2025-57622

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loadsrequest.getdata component...

6.1AI score0.00497EPSS
Exploits0References2
euvd
euvd
added 2026/03/03 12:0 a.m.6 views

EUVD-2025-208231

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loadsrequest.getdata component...

6.3AI score0.00497EPSS
Exploits0References2
cve
cve
added 2026/03/03 12:0 a.m.11 views

CVE-2025-57622

CVE-2025-57622 concerns Step-Video-T2V. Public descriptions identify a remote code execution vulnerability exploitable via the /vae-api and /caption-api endpoints, where untrusted request data is deserialized with pickle.loads(), enabling arbitrary code execution. The issue is described across mu...

9.8CVSS6.3AI score0.00497EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/03/03 12:0 a.m.6 views

Step-Video-T2V 安全漏洞

Step-Video-T2V is an image-to-video model open-sourced by stepfun-ai. There is a security vulnerability in Step-Video-T2V. This vulnerability stems from the use of pickle.loads to process request data in the /vae-api and /caption-api components. It may allow a remote attacker to execute arbitrary...

9.8CVSS6.1AI score0.00497EPSS
Exploits0References2
Rows per page
Query Builder