Rvc-Project Retrieval-Based-Voice-Conversion-Webui vulnerabilities
11 known vulnerabilities affecting rvc-project/retrieval-based-voice-conversion-webui.
Total CVEs
11
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL11
Vulnerabilities
Page 1 of 1
CVE-2025-43843P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43843 [CRITICAL] CWE-77 CVE-2025-43843: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables exp_dir1, np7 and f0method8 take user input and pass it into the extract_f0_feature function, which concatenates them into a command that is run on the server. This can lead to arbitrar
nvd
CVE-2025-43842P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43842 [CRITICAL] CWE-77 CVE-2025-43842: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables exp_dir1, np7, trainset_dir4 and sr2 take user input and pass it to the preprocess_dataset function, which concatenates them into a command that is run on the server. This can lead to a
nvd
CVE-2025-43844P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43844 [CRITICAL] CWE-77 CVE-2025-43844: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to command injection. The variables exp_dir1, among others, take user input and pass it to the click_train function, which concatenates them into a command that is run on the server. This can lead to arbitrary command exe
nvd
CVE-2025-43851P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43851 [CRITICAL] CWE-502 CVE-2025-43851: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The model_choose variable takes user input (e.g. a path to a model) and passes it to the uvr function in vr.py. In uvr , a new instance of AudioPre class is created with the model_path attribut
nvd
CVE-2025-43849P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43849 [CRITICAL] CWE-502 CVE-2025-43849: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_a and cpkt_b variables take user input (e.g. a path to a model) and pass it to the merge function in process_ckpt.py, which uses them to load the models on those paths with torch.load,
nvd
CVE-2025-43852P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43852 [CRITICAL] CWE-502 CVE-2025-43852: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The model_choose variable takes user input (e.g. a path to a model) and passes it to the uvr function in vr.py. In uvr , if model_name contains the string "DeEcho", a new instance of AudioPreDe
nvd
CVE-2025-43848P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43848 [CRITICAL] CWE-502 CVE-2025-43848: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_path0 variable takes user input (e.g. a path to a model) and passes it to the change_info function in process_ckpt.py, which uses it to load the model on that path with torch.load, whi
nvd
CVE-2025-43846P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43846 [CRITICAL] CWE-502 CVE-2025-43846: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_path1 variable takes user input (e.g. a path to a model) and passes it to the show_info function in process_ckpt.py, which uses it to load the model on that path with torch.load, which
nvd
CVE-2025-43847P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43847 [CRITICAL] CWE-502 CVE-2025-43847: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_path2 variable takes user input (e.g. a path to a model) and passes it to the extract_small_model function in process_ckpt.py, which uses it to load the model on that path with torch.l
nvd
CVE-2025-43850P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43850 [CRITICAL] CWE-502 CVE-2025-43850: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_dir variable takes user input (e.g. a path to a model) and passes it to the change_info function in export.py, which uses it to load the model on that path with torch.load, which can l
nvd
CVE-2025-43845P2CRITICALCVSS 9.8≤ 2.2.2310062025-05-05
CVE-2025-43845 [CRITICAL] CWE-94 CVE-2025-43845: Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231
Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to code injection. The ckpt_path2 variable takes user input (e.g. a path to a model) and passes it to change_info_ function, which opens and reads the file on the given path (except it changes the final on the path to tra
nvd