Description
manga-image-translator version beta-0.3 and prior in shared API mode contains an unsafe deserialization vulnerability that can lead to unauthenticated remote code execution. The FastAPI endpoints /simple_execute/{method} and /execute/{method} deserialize attacker-controlled request bodies using pickle.loads() without validation. Although a nonce-based authorization check is intended to restrict access, the nonce defaults to an empty string and the check is skipped, allowing remote attackers to execute arbitrary code in the server context by sending a crafted pickle payload.
Published: 2026-02-11
Score: 9.3 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Apply Workaround
AI Analysis

Impact

The vulnerability resides in the shared API mode of manga‑image‑translator beta‑0.3 and earlier, where the FastAPI endpoints "/simple_execute/{method}" and "/execute/{method}" use Python’s pickle.loads() to deserialize request bodies without validating the payload. This unsafe deserialization enables any network user who can contact the API to send a specially crafted pickle payload that will be executed with the privileges of the server process. The consequence is full remote code execution on the host, which can compromise confidentiality, integrity, and availability of the affected machine and any services it hosts. The weakness aligns with CWE‑502, indicating insecure deserialization.

Affected Systems

The vulnerability affects the manga‑image‑translator application released by zyddnys. Versions beta‑0.3 and earlier running in shared API mode are impacted. No specific minor or patch versions are listed; the issue is present up to and including the latest beta release at the time of the advisory.

Risk and Exploitability

CVSS 9.3 reflects a critical severity, yet the EPSS score is below 1 %, indicating that currently the likelihood of exploitation is low. The vulnerability is not yet listed in the CISA KEV catalog. Attackers can reach the vulnerable endpoints over the network; no authentication is required because the intended nonce‑based protection defaults to an empty string, effectively disabling the check. Once accessed, the attacker can inject arbitrary pickled objects that will be deserialized and executed by the server.

Generated by OpenCVE AI on April 17, 2026 at 20:08 UTC.

Remediation

Vendor Workaround

Set the MT_WEB_NONCE environment variable or pass --nonce=<secret> at startup.

OpenCVE Recommended Actions

  • Set the MT_WEB_NONCE environment variable to a secure random string or start the application with the --nonce flag to enable the nonce check that prevents unauthenticated access.
  • Upgrade to a fixed version of manga‑image‑translator where this unsafe deserialization has been resolved; if no official patch exists, review the project’s release notes or repository for a corrected implementation.
  • Disable the shared API mode entirely when it is not required, or restrict its exposure to trusted networks using firewall rules or a reverse‑proxy to block unauthenticated clients.
  • Continuously monitor application logs for deserialization errors or unexpected payloads, and alert on repeated failures that may indicate an active exploit attempt.

Generated by OpenCVE AI on April 17, 2026 at 20:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 12 Feb 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 12 Feb 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Zyddnys
Zyddnys manga-image-translator
Vendors & Products Zyddnys
Zyddnys manga-image-translator

Wed, 11 Feb 2026 22:45:00 +0000

Type Values Removed Values Added
Description manga-image-translator version beta-0.3 and prior in shared API mode contains an unsafe deserialization vulnerability that can lead to unauthenticated remote code execution. The FastAPI endpoints /simple_execute/{method} and /execute/{method} deserialize attacker-controlled request bodies using pickle.loads() without validation. Although a nonce-based authorization check is intended to restrict access, the nonce defaults to an empty string and the check is skipped, allowing remote attackers to execute arbitrary code in the server context by sending a crafted pickle payload.
Title manga-image-translator Shared API Unsafe Deserialization RCE
Weaknesses CWE-502
References
Metrics cvssV4_0

{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Zyddnys Manga-image-translator
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-02-12T15:01:45.298Z

Reserved: 2026-02-11T20:08:07.943Z

Link: CVE-2026-26215

cve-icon Vulnrichment

Updated: 2026-02-12T15:01:03.119Z

cve-icon NVD

Status : Deferred

Published: 2026-02-11T23:16:10.797

Modified: 2026-04-15T00:35:42.020

Link: CVE-2026-26215

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-17T20:15:26Z

Weaknesses