We use cookies to improve your experience on our site.
AVID-2026-R1676
Description
Applio allows a DoS in restart.py (CVE-2025-27787)
Details
Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to denial of service (DoS) in restart.py. model_name in train.py takes user input, and passes it to the stop_train function in restart.py, which uses it construct a path to a folder with config.json. That config.json is opened and the list of values under “process_pids” are read. Next all the process IDs listed in the JSON are killed. Using one of the arbitrary file writes, one can write to logs/foobar a config.json file, which contains a list of process IDs. Then one can access this endpoint to kill these processes. Since an attacker can’t know what process is running on which process ID, they can send a list of hundreds of process IDs, which can kill the process that applio is using to run, as well as other, potentially important processes, which leads to DoS. Note that constructing a path with user input also enables path traversal. For example, by supplying “../../” in model_name one can access config.json freom locations two folders down on the server. As of time of publication, no known patches are available.
Reason for inclusion in AVID: The AVID candidate (CVE-2025-27787) describes a software DoS vulnerability in Applio, an AI-related voice conversion tool. The issue arises from user-controlled input enabling path traversal and arbitrary file writes, which can be exploited to kill processes and disrupt operation. This concerns AI tooling that could be part of AI data processing or model workflows, i.e., a component within the supply chain of general-purpose AI systems. The report provides explicit vulnerability behavior, affected versions, and references, supporting its relevance and enabling curation.
References
- NVD entry
- https://securitylab.github.com/advisories/GHSL-2024-354_Applio/
- https://github.com/IAHispano/Applio/blob/29b4a00e4be209f9aac51cd9ccffcc632dfb2973/tabs/settings/sections/restart.py#L9
- https://github.com/IAHispano/Applio/blob/29b4a00e4be209f9aac51cd9ccffcc632dfb2973/tabs/train/train.py#L306
Affected or Relevant Artifacts
- Developer: IAHispano
- Deployer: IAHispano
- Artifact Details:
| Type | Name |
|---|---|
| System | Applio |
Impact
AVID Taxonomy Categorization
- Risk domains: Security
- SEP subcategories: S0100: Software Vulnerability
- Lifecycle stages: L06: Deployment
CWE
| ID | Description |
|---|---|
| CWE-74 | CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component (‘Injection’) |
| CWE-22 | CWE-22: Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) |
Other information
- Report Type: Advisory
- Credits:
- Date Reported: 2025-03-19
- Version: 0.3.3
- AVID Entry