Vulnerabilities in hiyouga
5 resultsCVE-2024-52803HIGHLLama Factory Remote OS Command Injection VulnerabilityEPSS 2.3%CVE-2025-53002HIGHLLaMA-Factory Remote Code Execution (RCE) VulnerabilityEPSS 1.0%CVE-2025-61784HIGHLLaMA Factory's Chat API has Critical SSRF and LFI VulnerabilitiesEPSS 0.3%CVE-2025-46567MEDIUMLLaMA-Factory Allows Arbitrary Code Execution via Unsafe Deserialization in Ilamafy_baichuan2.pyEPSS 0.2%CVE-2026-58116CRITICALLLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model PathEPSS —