VYPR

Serge

by Serge Chat

Source repositories

CVEs (2)

  • CVE-2026-6588MedApr 20, 2026
    risk 0.42cvss 6.5epss 0.00

    A weakness has been identified in serge-chat serge up to 1.4TB. The impacted element is the function download_model/delete_model of the file api/src/serge/routers/model.py of the component Model API Endpoint. Executing a manipulation can lead to missing authentication. The…

  • CVE-2024-11441MedMar 20, 2025
    risk 0.40cvss 6.1epss 0.00

    A stored cross-site scripting (XSS) vulnerability exists in Serge version 0.9.0. The vulnerability is due to improper neutralization of input during web page generation in the chat prompt. An attacker can exploit this vulnerability by sending a crafted message containing…