216.73.217.98

CVE-2026-47747

· Published 16/06/2026 22:16 · Modified 16/06/2026 20:44 · Author: The MITRE Corporation

Labels: CVE-2026-47747 2026-06-16CVE-2026-47747CWE-122[email protected]

Essential information

Published
16/06/2026 22:16
Modified
16/06/2026 20:44
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
7.8 HIGH (v3.1)
CISA KEV
No
CWE
CWE-122
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode handler. The issue was caused by sign confusion on the opcode length field. A crafted .ckpt file could trigger memcpy with a very large length derived from a negative signed value, causing immediate heap corruption. The issue has been resolved in version master-584-0a7ae07. If developers are unable to immediately update their applications they can work around this issue by only loading .ckpt checkpoint files from trusted sources and preferring trusted model sources and safer formats such as .safetensors where possible.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
stable-diffusion / stable-diffusion.cpp cpe:2.3:a:stable-diffusion:stable-diffusion.cpp:<master-584-0a7ae07:*:*:*:*:*:*:*

References