CVE-2026-31251

Name of the Vulnerable Software and Affected Versions CosyVoice versions prior to commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e

Description The gRPC server component contains an insecure deserialization issue. During server initialization, the system loads a speech synthesis model from a user-specified directory using the torch.load() function without the weights only=True security parameter enabled. This allows the deserialization of arbitrary Python objects via the pickle module, enabling an attacker to execute arbitrary code on the system by providing malicious model files within the specified directory.

Recommendations Update to a version following commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e.