{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "3.2.8-bugfix" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "0c92ac552f97ee8b5697eef35350693ab3b1ecce" } ], "repo": "https://github.com/iahispano/applio", "type": "GIT" } ] } ], "database_specific": { "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-200" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/27xxx/CVE-2025-27784.json" }, "details": "Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to arbitrary file read in train.py's `export_pth` function. This issue may lead to reading arbitrary files on the Applio server. It can also be used in conjunction with blind server-side request forgery to read files from servers on the internal network that the Applio server has access to. As of time of publication, no known patches are available.", "id": "CVE-2025-27784", "modified": "2026-04-01T23:08:03.883891926Z", "published": "2025-03-19T20:41:32.140Z", "references": [ { "type": "WEB", "url": "https://github.com/IAHispano/Applio/blob/29b4a00e4be209f9aac51cd9ccffcc632dfb2973/tabs/train/train.py#L267" }, { "type": "WEB", "url": "https://github.com/IAHispano/Applio/blob/29b4a00e4be209f9aac51cd9ccffcc632dfb2973/tabs/train/train.py#L801" }, { "type": "ADVISORY", "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/27xxx/CVE-2025-27784.json" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27784" }, { "type": "ADVISORY", "url": "https://securitylab.github.com/advisories/GHSL-2024-341_GHSL-2024-353_Applio/" } ], "schema_version": "1.7.3", "severity": [ { "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P", "type": "CVSS_V4" } ], "summary": "Applio allows arbitrary file read in train.py export_pth function" }