Hiyouga
AI Threat Alert tracks 4 known AI/ML vulnerabilities affecting Hiyouga products — each enriched with CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis. Browse every Hiyouga CVE below, sorted by severity and recency.
| Severity | CVE | Headline | Package | CVSS |
|---|---|---|---|---|
| CRITICAL | CVE-2024-52803 | LlamaFactory: RCE via OS command injection in training | llamafactory | 9.8 |
| HIGH | CVE-2025-46567 | LLaMA-Factory: RCE via torch.load() unsafe deserialization | llamafactory | 7.8 |
| CRITICAL | CVE-2025-53002 | LLaMA-Factory: RCE via unsafe checkpoint deserialization | llamafactory | 9.8 |
| HIGH | CVE-2025-61784 | LLaMA-Factory: SSRF+LFI in multimodal chat API | llamafactory | 8.1 |
Frequently asked questions
How many known vulnerabilities affect Hiyouga?
4 AI/ML CVEs affecting Hiyouga products are tracked, sourced from NVD and GitHub Advisory.
What Hiyouga products are affected?
The CVEs below map to the Hiyouga AI/ML packages and tools tracked by AI Threat Alert; open any CVE to see the affected components and versions.
Where does the Hiyouga vulnerability data come from?
Data is sourced from NVD and GitHub Advisory, then enriched with CVSS severity, EPSS exploit probability, and patch status for each CVE.
How can I monitor Hiyouga for new vulnerabilities?
AI Threat Alert tracks Hiyouga continuously; a Pro subscription adds breaking alerts when new CVEs affecting Hiyouga are published.
How do I assess Hiyouga's security exposure?
Each CVE below carries CVSS severity and exploitation signals, so you can review the highest-severity Hiyouga issues first and judge the exposure for your stack.