CVE-2025-3622
Published
CVSS v3
5.5
MEDIUM
CVSS v2
5.2
MEDIUM
Affected
1
PROJECT
Description
A vulnerability, which was classified as critical, has been found in Xorbits Inference up to 1.4.1. This issue affects the function load of the file xinference/thirdparty/cosyvoice/cli/model.py. The manipulation leads to deserialization.
Swap GPT for any LLM by changing a single line of code. Xinference lets you run open-source, speech, and multimodal models on cloud, on-prem, or your laptop — all through one unified, production-ready inference API.
GitHub