M00Dy

**Name of the Vulnerable Software and Affected Versions** whisper.cpp versions prior to 1.8.3 **Description** A security flaw exists in the `whisper model load()` function within the ggml/src/ggml.c file. This issue allows for a null pointer dereference, which occurs when a program attempts to read or write to a memory location that is null, typically leading to a crash. Exploitation requires local access to the system. **Recommendations** Update to a version later than 1.8.2. As a temporary workaround, restrict access to the `whisper model load()` function to minimize the risk of exploitation.