Veröffentlicht am von ms-freelancer

CVE-2026-7597 – mem0ai mem0 faiss.py pickle.dump deserialization

CVE ID :CVE-2026-7597

Published : May 1, 2026, 10:16 p.m. | 2 hours, 3 minutes ago

Description :A vulnerability was found in mem0ai mem0 up to 1.0.11. This affects the function pickle.load/pickle.dump of the file mem0/vector_stores/faiss.py. Performing a manipulation results in deserialization. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The patch is named 62dca096f9236010ca15fea9ba369ba740b86b7a. Applying a patch is the recommended action to fix this issue.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…