CVE-2026-31219

🟡 Monitoruj

Niebezpieczna deserializacja w funkcji _load_model() w projekcie optimate umożliwia zdalne wykonanie kodu.

CVSS

8.8

EPSS

0.5%

Exploit

none

Vendor

Opis źródłowy (NVD)

The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE-502). When a user provides a single model file path (e.g., .pt or .pth) via the --model command-line argument, the function loads the file using torch.load() without enabling the weights_only=True security parameter. This allows the deserialization of arbitrary Python objects through the Pickle module. A remote attacker can exploit this by providing a maliciously crafted model file, leading to arbitrary code execution during deserialization on the victim's system.

deserialization rce Brak patcha

Źródła i daty

Źródło	Wartość
NVD – CVSS	8.8
CISA KEV (aktywnie wykorzystywane)	Nie
FIRST EPSS (prawdopodobieństwo exploita)	0.5%
Opublikowano (NVD)	2026-05-12 16:16:13 UTC
Ostatnia modyfikacja (NVD)	2026-05-15 15:16:50 UTC

Referencje

https://github.com/nebuly-ai/optimate (cve@mitre.org)
https://www.notion.so/CVE-2026-31219-35d1e139318881c8a629ec19671e74c3 (cve@mitre.org)