What is the CVSS score of CVE-2026-31218?

CVE-2026-31218 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Optimate are affected by CVE-2026-31218?

CVE-2026-31218 in Optimate allows authenticated users to execute arbitrary code by uploading malicious PyTorch model files, creating insider risk and supply chain vulnerabilities in machine learning…

Optimate CVE-2026-31218

EUVD-2026-29502 HIGH

Deserialization of Untrusted Data (CWE-502)

2026-05-12 mitre

GHSA-q2mf-qjjq-ghcc

RCE Python Deserialization N A

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

May 15, 2026 - 15:22 vuln.today

CVSS changed

May 15, 2026 - 15:22 NVD

8.8 (None) 8.8 (HIGH)

CVE Published

May 12, 2026 - 00:00 nvd

UNKNOWN (no severity yet)

DescriptionNVD

The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE-502). When loading a model state dictionary from a state_dict.pt file via torch.load(), the function does not enable the weights_only=True security parameter. This allows the deserialization of arbitrary Python objects through the Pickle module. A remote attacker can exploit this by providing a maliciously crafted state_dict.pt file within a directory specified via the --model argument, leading to arbitrary code execution during the deserialization process on the victim's system.

AnalysisAI

Remote code execution in Optimate's neural_magic_training.py script allows authenticated attackers to execute arbitrary code via malicious PyTorch model files. The vulnerability stems from unsafe deserialization when loading model state dictionaries without PyTorch's weights_only=True security flag, enabling pickle-based arbitrary object execution. …

RemediationAI

Within 24 hours: Disable or restrict model file upload functionality in Optimate to authorized personnel only; audit access logs for any model uploads in the past 90 days. Within 7 days: Implement network segmentation isolating Optimate instances from critical systems; require code review of all external model sources before loading. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-31218 vulnerability details – vuln.today

Back

Optimate CVE-2026-31218

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code