CVE-2025-43851 | RVC-Project Retrieval-based-Voice-Conversion-WebUI up to 2.2.231006 vr.py uvr model_choose deserialization (GHSL-2025-012)

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability, which was classified as very critical, has been found in RVC-Project Retrieval-based-Voice-Conversion-WebUI up to 2.2.231006. Affected by this issue is the function uvr of the file vr.py. The manipulation of the argument model_choose leads to deserialization.

This vulnerability is handled as CVE-2025-43851. The attack may be launched remotely. There is no exploit available.

CVE-2025-43851 | RVC-Project Retrieval-based-Voice-Conversion-WebUI up to 2.2.231006 vr.py uvr model_choose deserialization (GHSL-2025-012)

Post correlati

CVE-2024-1422 | Elementor Addon Elements Plugin up to 1.12.12 on WordPress Modal Popup Effect cross site scripting

CVE-2024-52725 | SEMCMS 4.8 SEMCMS_SeoAndTag.php ldgid sql injection

CVE-2024-21462 | Qualcomm Snapdragon up to QCN5124 TA ELF File Loading buffer over-read

CVE-2025-0350 | badhonrocks Carousel Maker for Divi Plugin up to 2.0.4 on WordPress cross site scripting