Remote Code Execution Vulnerability in ms-swift Project by ModelScope
CVE-2025-50460

9.8CRITICAL

Key Information:

Vendor: ModelScope
Status: ms-swift
Vendor: CVE Published:; 1 August 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-50460?

A remote code execution vulnerability has been identified in version 3.3.0 of the ms-swift project. This issue arises from unsafe deserialization in the tests/run.py component, where the yaml.load() function from the PyYAML library (version 5.3.1) is utilized. If an attacker manages to manipulate the YAML configuration file fed to the --run_config parameter, they could execute arbitrary code during deserialization, potentially leading to full system compromise. The vulnerability is activated when a malicious YAML file is processed, allowing execution of arbitrary Python commands, including os.system(). To mitigate this issue, it is advised to upgrade PyYAML to version 5.4 or above and to implement yaml.safe_load().

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-50460
Created by Anchor0221

References

https://github.com/modelscope/ms-swift

https://github.com/modelscope/ms-swift/blob/main/tests/ru...

https://github.com/advisories/GHSA-6757-jp84-gxfx

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 1, 2025
🟡
Public PoC available
Jul 30, 2025
👾
Exploit known to exist
Jul 30, 2025
Vulnerability Reserved
Jun 16, 2025