AVID-2026-R1701

Description

GHSL-2025-019_Retrieval-based-Voice-Conversion-WebUI (CVE-2025-43849)

Details

Retrieval-based-Voice-Conversion-WebUI is a voice changing framework based on VITS. Versions 2.2.231006 and prior are vulnerable to unsafe deserialization. The ckpt_a and cpkt_b variables take user input (e.g. a path to a model) and pass it to the merge function in process_ckpt.py, which uses them to load the models on those paths with torch.load, which can lead to unsafe deserialization and remote code execution. As of time of publication, no known patches exist.

Reason for inclusion in AVID: The CVE describes unsafe deserialization in a software component (Retrieval-based-Voice-Conversion-WebUI) used in AI workflows. It loads user-supplied model paths via torch.load, enabling remote code execution. This affects a software component within AI pipelines, representing a software supply-chain vulnerability in AI systems. Clear security impact (RCE) with evidence in the description and references.

References

Affected or Relevant Artifacts

Developer: RVC-Project
Deployer: RVC-Project
Artifact Details:

Type	Name
System	Retrieval-based-Voice-Conversion-WebUI

Impact

AVID Taxonomy Categorization

Risk domains: Security
SEP subcategories: S0100: Software Vulnerability
Lifecycle stages: L06: Deployment

CWE

ID	Description
CWE-502	CWE-502: Deserialization of Untrusted Data

Other information

Report Type: Advisory
Credits:
Date Reported: 2025-05-05
Version: 0.3.3
AVID Entry