CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/15 7:57 p.m.•7 views

CVE-2026-31219

The loadmodel function in the neuralmagictraining.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When a user provides a single model file path e.g., .pt or .pth via the --model command-line argumen...

8.8CVSS6.3AI score0.00164EPSS

RedhatCVE•added 2026/05/15 1:57 a.m.•3 views

CVE-2026-31232

The CosyVoice project thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its model loading process. When loading model files .pt from a user-specified directory via the --modeldir argument, the code uses torch.load without...

8.8CVSS6.5AI score0.0025EPSS

RedhatCVE•added 2026/05/12 8:21 p.m.•9 views

CVE-2026-31249

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its makeparquetlist.py data processing tool. The script loads PyTorch .pt files utterance embeddings, speaker embeddings, speech tokens using torch.load without...

7.3CVSS6.1AI score0.00047EPSS

RedhatCVE•added 2026/05/12 8:21 p.m.•6 views

CVE-2026-31250

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its averagemodel.py model averaging tool. The script loads PyTorch checkpoint files epoch.pt for model averaging using torch.load without enabling the...

7.3CVSS6.1AI score0.00047EPSS

OSV•added 2026/05/12 6:30 p.m.•4 views

GHSA-XP5Q-5Q7G-Q26R Ludwig framework is vulnerable to insecure deserialization in its model serving component

The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization CWE-502 in its model serving component. When starting a model server with the ludwig serve command, the framework loads model weight files using torch.load without enabling the security-restrictive weightsonly=True...

9.8CVSS6.3AI score0.00088EPSS

EUVD•added 2026/05/12 6:30 p.m.•10 views

EUVD-2026-29503

6.3AI score0.00164EPSS

OSV•added 2026/05/12 6:30 p.m.•4 views

GHSA-78CP-F66X-QMH5 Snorkel Trainer.load uses an unsafe torch.load

8.8CVSS6.3AI score0.00282EPSS

NVD•added 2026/05/12 6:16 p.m.•5 views

CVE-2026-31238

9.8CVSS0.00088EPSS

NVD•added 2026/05/12 6:16 p.m.•6 views

CVE-2026-31239

The mamba language model framework thru 2.2.6 is vulnerable to insecure deserialization CWE-502 when loading pre-trained models from HuggingFace Hub. The MambaLMHeadModel.frompretrained method uses torch.load to load the pytorchmodel.bin weight file without enabling the security-restrictive...

9.8CVSS0.00054EPSS

NVD•added 2026/05/12 6:16 p.m.•5 views

CVE-2026-31229

The Adversarial Robustness Toolbox ART thru 1.20.1 contains an insecure deserialization vulnerability CWE-502 in its Kubeflow component's model loading functionality. When loading model weights from a file e.g., model.pt during robustness evaluation, the code uses torch.load without the...

9.8CVSS0.00513EPSS

NVD•added 2026/05/12 4:16 p.m.•4 views

CVE-2026-31224

The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability CWE-502 in the MultitaskClassifier.load method of the MultitaskClassifier class. The method loads model weight files using torch.load without enabling the security-restrictive weightsonly=True parameter. This...

8.8CVSS0.00282EPSS

NVD•added 2026/05/12 4:16 p.m.•5 views

CVE-2026-31222

8.8CVSS0.00282EPSS

NVD•added 2026/05/12 4:16 p.m.•5 views

CVE-2026-31219

8.8CVSS0.00164EPSS

NVD•added 2026/05/12 4:16 p.m.•4 views

CVE-2026-31218

The loadmodel function in the neuralmagictraining.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When loading a model state dictionary from a statedict.pt file via torch.load, the function does not...

8.8CVSS0.00164EPSS

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40063

6.3AI score0.00282EPSS

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-40060

PyTorch-Lightning versions 2.6.0 and earlier contain an insecure deserialization vulnerability CWE-502 in the checkpoint loading mechanism. The LightningModule.load from checkpoint method, which is commonly used to load saved model states, internally calls torch.load without setting the...

6.3AI score0.00191EPSS

Exploits1References3

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40061

The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability CWE-502 in the Trainer.load method of the Trainer class. The method loads model checkpoint files using torch.load without enabling the security-restrictive weights only=True parameter. This default behavior allows...

6.3AI score0.00282EPSS

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-40053

The torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 2025-20-27 contains an insecure deserialization vulnerability CWE-502. The script uses torch.load to process PyTorch checkpoint files .pt without enabling the security-restrictiv...

6.3AI score0.00513EPSS

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-40058

The load model function in the neural magic training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f 2024-07-21 is vulnerable to insecure deserialization CWE-502. When a user provides a single model file path e.g., .pt or .pth via the --model command-line...

6.3AI score0.00164EPSS