Vulnerability Description
The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE-502). When a user provides a single model file path (e.g., .pt or .pth) via the --model command-line argument, the function loads the file using torch.load() without enabling the weights_only=True security parameter. This allows the deserialization of arbitrary Python objects through the Pickle module. A remote attacker can exploit this by providing a maliciously crafted model file, leading to arbitrary code execution during deserialization on the victim's system.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://github.com/nebuly-ai/optimate
- https://www.notion.so/CVE-2026-31219-35d1e139318881c8a629ec19671e74c3
FAQ
What is CVE-2026-31219?
CVE-2026-31219 is a vulnerability with a CVSS score of 8.8 (HIGH). The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE...
How severe is CVE-2026-31219?
CVE-2026-31219 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-31219?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.