5.1

CVE-2024-1432

EPSS 0.05%
Veröffentlicht 11.02.2024 03:15:08
Zuletzt bearbeitet 30.12.2025 13:30:20
Quelle cna@vuldb.com
CVE-Watchlists
Login
Unerledigt
Login

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22 and classified as problematic. This issue affects the function apply_xseg of the file main.py. The manipulation leads to deserialization. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-253391. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Iperov ≫ Deepfacelab Versiondf.wf.288res.384.92.72.22

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.148

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
cna@vuldb.com	5	1.6	3.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
cna@vuldb.com	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

https://github.com/bayuncao/vul-cve-12

Broken Link

https://vuldb.com/?ctiid.253391

VDB Entry

Permissions Required

https://vuldb.com/?id.253391

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2024-1432

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-1432

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-1432

EUVD