Out-of-Bounds Read Vulnerability in Stable Diffusion Library by LeeJet
CVE-2026-47748

5.5MEDIUM

Key Information:

Vendor: Leejet
Status: Stable-diffusion.cpp
Vendor: CVE Published:; 16 June 2026

What is CVE-2026-47748?

The stable-diffusion.cpp library, utilized for running various diffusion model inference, is susceptible to an out-of-bounds read error. This vulnerability arises from improper handling of the PyTorch checkpoint pickle opcode parsing, where the parser does not consistently validate that sufficient input exists before executing read operations. This oversight may lead to unsafe memory access during the processing of crafted or truncated .ckpt files. Attackers can exploit this flaw by enticing victims to load .ckpt files from untrusted sources, potentially leading to application crashes or further exploitation. It is recommended that all users of affected releases immediately update to version master-584-0a7ae07 and abstain from using untrusted checkpoint files. Safer alternatives, such as .safetensors format, should be prioritized.

Affected Version(s)

stable-diffusion.cpp < master-584-0a7ae07

References

https://github.com/leejet/stable-diffusion.cpp/security/a...

x_refsource_CONFIRM

https://github.com/leejet/stable-diffusion.cpp/commit/0a7...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2026
Vulnerability Reserved
May 19, 2026

CVE-2026-47748 Data

JSON

Leejet

What is CVE-2026-47748?

Affected Version(s)

References

CVSS V3.1

Timeline