CNNVD-202511-2445 Information

CNNVD ID

CNNVD-202511-2445

Related CVE

CVE-2025-62609

• CNNVD Published: 2025-11-21

Description (Chinese)

MLX是ml-explore开源的一个机器学习框架。 MLX 0.29.4之前版本存在代码问题漏洞，该漏洞源于加载恶意GGUF文件时存在分段错误，可能导致应用程序崩溃。

Description (English)

MLX is a machine learning framework for the ml-explore open source. There was a code problem loophole in the pre-MLX 0.29.4 version, which resulted from a break-in when the malicious GGF file was loaded, which could lead to a breakdown of the application.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

ml-explore

Published

2025-11-21

Last Modified

2026-02-24

References

https://github.com/ml-explore/mlx/security/advisories/GHSA-j842-xgm4-wf88

Patch

https://github.com/ml-explore/mlx/releases