216.73.217.176

CVE-2025-27778

· Published 19/03/2025 21:15 · Modified 19/03/2025 21:15

Labels: CVE-2025-27778 2025-03-19CVE-2025-27778CWE-502[email protected]

Essential information

Published
19/03/2025 21:15
Modified
19/03/2025 21:15
Author
Creator
CVSS
8.9 HIGH (v3) 8.9 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to unsafe deserialization in `infer.py`. The issue can lead to remote code execution. As of time of publication, a fix is available on the `main` branch of the Applio repository but not attached to a numbered release.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
applio / applio cpe:2.3:a:applio:applio:3.2.8:bugfix:*:*:*:*:*:*
applio / applio cpe:2.3:a:applio:applio:*:*:*:*:*:*:*:*

References