CVE-2025-27786 in Applio
Summary
by MITRE • 03/19/2025
Applio is a voice conversion tool. Versions 3.2.8-bugfix and prior are vulnerable to arbitrary file removal in core.py. `output_tts_path` in tts.py takes arbitrary user input and passes it to `run_tts_script` function in core.py, which checks if the path in `output_tts_path` exists, and if yes, removes that path, which leads to arbitrary file removal. As of time of publication, no known patches are available.
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 08/01/2025
The vulnerability identified as CVE-2025-27786 affects Applio, a voice conversion tool that has been found to contain a critical arbitrary file removal flaw in its core functionality. This vulnerability exists in versions 3.2.8-bugfix and prior, representing a significant security risk that could be exploited by malicious actors to delete arbitrary files on affected systems. The flaw stems from insufficient input validation and path manipulation within the application's core components, creating a dangerous condition where user-supplied data can directly influence file system operations.
The technical implementation of this vulnerability occurs through the interaction between two key files within the application's codebase. The `tts.py` file accepts user input through the `output_tts_path` parameter, which serves as the destination for text-to-speech output generation. This parameter receives unvalidated user input that is then passed to the `run_tts_script` function located in `core.py`. The core.py function performs a basic existence check on the provided path but fails to implement proper validation or sanitization measures before executing the file removal operation. This design flaw creates a path traversal condition where an attacker can specify any file path that exists on the system, leading to unauthorized deletion of files.
The operational impact of this vulnerability extends beyond simple file removal capabilities and represents a severe privilege escalation vector. Attackers could potentially exploit this flaw to delete critical system files, application binaries, or user data, causing system instability or complete application failure. The vulnerability's severity is amplified by the fact that no patches are currently available, leaving affected systems exposed to exploitation without immediate remediation options. This situation creates a window of opportunity for attackers to leverage the flaw for more sophisticated attacks, including system compromise, data destruction, or denial of service conditions.
Security professionals should recognize this vulnerability as a direct violation of secure coding principles and aligns with CWE-22 (Path Traversal) and CWE-77 (Command Injection) categories. The flaw demonstrates poor input validation practices and highlights the critical importance of implementing proper access controls and path validation in file system operations. From an attacker's perspective, this vulnerability maps to ATT&CK technique T1070.004 (File Deletion) and potentially T1486 (Data Encrypted for Ransom) if the deleted files include critical system components or user data. Organizations should immediately implement compensating controls such as restricting file system access permissions, implementing network segmentation, and monitoring for suspicious file operations. The lack of available patches underscores the urgency for administrators to consider alternative mitigation strategies including application sandboxing, input filtering, or complete application isolation until vendor-provided fixes are released.