YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
PaddlePaddle paddle.load() RCE โ PoC
Vulnerability
paddle.load() calls raw pickle.load() with NO safety checks.
Unlike PyTorch (weights_only=True), PaddlePaddle has NO safe loading mode.
A 63-byte .pdparams file achieves arbitrary code execution.
Affected
- PaddlePaddle (paddlepaddle) all versions, tested 3.3.1
- File:
paddle/framework/io.pyline 1273
Reproduce
pip install paddlepaddle
python poc.py
Inference Providers NEW
This model isn't deployed by any Inference Provider. ๐ Ask for provider support