Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-13514

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.02103EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-6786

Malicious code in bioql PyPI...

9.3CVSS6.3AI score0.00531EPSS
Exploits0References5
NVD
NVD
added 2025/07/15 9:15 p.m.5 views

CVE-2025-49840

GPT-SoVITS-WebUI is a voice conversion and text-to-speech webUI. In versions 20250228v3 and prior, there is an unsafe deserialization vulnerability in inferencewebui.py. The GPTdropdown variable takes user input and passes it to the changegptweights function. In changegptweights, the user input,...

9.8CVSS0.00639EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/07 6:25 p.m.8 views

CVE-2025-43850

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckptdir variable takes user input e.g. a path to a model and passes it to the changeinfo function in export.py, which uses it to load the...

9.8CVSS7.8AI score0.00762EPSS
Exploits0References1
NVD
NVD
added 2025/05/05 7:15 p.m.13 views

CVE-2025-43850

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckptdir variable takes user input e.g. a path to a model and passes it to the changeinfo function in export.py, which uses it to load the...

9.8CVSS0.00762EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/05 6:20 p.m.16 views

CVE-2025-43850 GHSL-2025-020_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckptdir variable takes user input e.g. a path to a model and passes it to the changeinfo function in export.py, which uses it to load the...

9.3CVSS0.00762EPSS
Exploits0References4
OSV
OSV
added 2025/05/05 5:15 p.m.7 views

CVE-2025-43845 GHSL-2025-015_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to code injection. The ckptpath2 variable takes user input e.g. a path to a model and passes it to changeinfo function, which opens and reads the file on the given path...

9.3CVSS8AI score0.00799EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/05/05 5:11 p.m.7 views

CVE-2025-43844 GHSL-2025-014_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables expdir1, among others, take user input and pass it to the clicktrain function, which concatenates them into a command that is run on...

9.3CVSS7.2AI score0.02103EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/05/05 5:9 p.m.5 views

CVE-2025-43843 GHSL-2025-013_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables expdir1, np7 and f0method8 take user input and pass it into the extractf0feature function, which concatenates them into a command th...

9.3CVSS7.5AI score0.02259EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/05/05 5:8 p.m.10 views

CVE-2025-43842 GHSL-2025-012_Retrieval-based-Voice-Conversion-WebUI

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables expdir1, np7, trainsetdir4 and sr2 take user input and pass it to the preprocessdataset function, which concatenates them into a...

9.3CVSS7.5AI score0.02103EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.6 views

PT-2025-19766 · Unknown · Retrieval-Based-Voice-Conversion-Webui

Name of the Vulnerable Software and Affected Versions: Retrieval-based-Voice-Conversion-WebUI versions 2.2.231006 and prior Description: Retrieval-based-Voice-Conversion-WebUI, a voice changing framework based on VITS, is susceptible to unsafe deserialization. The model choose variable accepts...

9.8CVSS6.8AI score0.00806EPSS
Exploits0References12
Rows per page
Query Builder