Description
F5-TTS through version 1.1.20 contains a path traversal vulnerability in the finetune Gradio handlers that allows unauthenticated attackers to write arbitrary files by passing unsanitized user-supplied project names directly to os.path.join() without validating the resulting path stays within the intended base directory. Attackers can supply absolute path arguments such as /tmp/EVIL to override the base directory entirely and create arbitrary directories with attacker-controlled JSON content at any filesystem path writable by the server process.
Published: 2026-06-01
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a path traversal flaw in the finetune Gradio handlers of F5‑TTS. Unsanitized project names are passed directly to os.path.join without ensuring that the resolved path remains inside the intended base directory. An attacker can provide an absolute path such as /tmp/EVIL, which causes the application to create arbitrary directories and files wherever the server process has write permission. By writing attacker‑controlled JSON content or other files, the attacker could overwrite critical configuration files, inject malicious code, or facilitate further compromise of the server.

Affected Systems

This issue affects the F5‑TTS application from SWivid, specifically version 1.1.20 and earlier. The path traversal flaw can be exploited through the finetune Gradio endpoint exposed by these versions.

Risk and Exploitability

With a CVSS score of 8.8, the vulnerability is classified as high severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. Attackers can exploit it without authentication via the publicly accessible finetune Gradio interface. The flaw allows writing arbitrary files to any location writable by the server process, which can compromise configuration integrity and system stability. If these files are later executed or parsed by the application or other services, code execution could occur, but that outcome is inferred from the description and not explicitly confirmed.

Generated by OpenCVE AI on June 1, 2026 at 20:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update F5‑TTS to a version newer than 1.1.20 where the path traversal is fixed.
  • Configure the file system so that the “finetune” directory and any other writable directories used by the application are owned by a non‑privileged user and have the strictest possible permissions allowed for the application’s functionality.
  • Disable or harden the finetune Gradio endpoint by adding authentication and input validation to reject absolute or parent‑path references in project names.

Generated by OpenCVE AI on June 1, 2026 at 20:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 01 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Description F5-TTS through version 1.1.20 contains a path traversal vulnerability in the finetune Gradio handlers that allows unauthenticated attackers to write arbitrary files by passing unsanitized user-supplied project names directly to os.path.join() without validating the resulting path stays within the intended base directory. Attackers can supply absolute path arguments such as /tmp/EVIL to override the base directory entirely and create arbitrary directories with attacker-controlled JSON content at any filesystem path writable by the server process.
Title F5-TTS 1.1.20 Path Traversal via finetune_gradio.py create_data_project()
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L'}

cvssV4_0

{'score': 8.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-01T18:58:32.297Z

Reserved: 2026-05-01T18:22:45.640Z

Link: CVE-2026-43624

cve-icon Vulnrichment

Updated: 2026-06-01T18:58:28.919Z

cve-icon NVD

Status : Deferred

Published: 2026-06-01T19:16:46.960

Modified: 2026-06-02T14:43:49.920

Link: CVE-2026-43624

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-01T21:00:15Z

Weaknesses