CVE-2025-43849

Name of the Vulnerable Software and Affected Versions Retrieval-based-Voice-Conversion-WebUI versions 2.2.231006 and prior

Description The issue concerns a voice changing framework based on VITS, where unsafe deserialization can occur. The ckpt a and cpkt b variables take user input, such as a path to a model, and pass it to the merge function in process ckpt.py. This function uses torch.load to load models from the provided paths, which can lead to unsafe deserialization and remote code execution. No known patches exist as of the time of publication.

Recommendations For versions 2.2.231006 and prior, consider disabling the merge function in process ckpt.py until a patch is available to prevent unsafe deserialization. Restrict access to the ckpt a and cpkt b variables to minimize the risk of exploitation. Avoid using the torch.load function with untrusted input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.