CVE-2026-15531
yashbhalgat HashNeRF-pytorch Checkpoint File run_nerf.py torch.load deserialization
A vulnerability has been found in yashbhalgat HashNeRF-pytorch up to 82885e698295982504eb6a26d060a6b2473e3706. Affected by this issue is the function torch.load of the file run_nerf.py of the component Checkpoint File Handler. The manipulation of the argument ckpt_path leads to deserialization. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The pull request to fix this issue awaits acceptance.
| CWE | CWE-502 CWE-20 |
| Vendor | yashbhalgat |
| Product | hashnerf-pytorch |
| Published | Jul 13, 2026 |
| Last Updated | Jul 13, 2026 |
Get instant alerts for yashbhalgat hashnerf-pytorch
Be the first to know when new medium vulnerabilities affecting yashbhalgat hashnerf-pytorch are published โ delivered to Slack, Telegram or Discord.
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R