CVE-2026-7597

MEDIUM

mem0ai mem0 faiss.py pickle.dump deserialization

Title source: cna
STIX 2.1

Description

A vulnerability was found in mem0ai mem0 up to 1.0.11. This affects the function pickle.load/pickle.dump of the file mem0/vector_stores/faiss.py. Performing a manipulation results in deserialization. It is possible to initiate the attack remotely. The exploit has been made public and could be used. The patch is named 62dca096f9236010ca15fea9ba369ba740b86b7a. Applying a patch is the recommended action to fix this issue.

References (7)

Core 7
Core References
Exploit exploit issue-tracking
https://github.com/mem0ai/mem0/issues/3778
Patch issue-tracking patch
https://github.com/mem0ai/mem0/pull/4833
Vdb Entry, Technical Description vdb-entry technical-description
VDB-360550 | mem0ai mem0 faiss.py pickle.dump deserialization
https://vuldb.com/vuln/360550
Signature, Permissions Required signature permissions-required
VDB-360550 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/360550/cti
Third Party Advisory third-party-advisory
Submit #805562 | Mem0 <= v1.0.11 Unsafe Deserialization
https://vuldb.com/submit/805562

Scores

CVSS v3 6.3
EPSS 0.0032
EPSS Percentile 23.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-20 CWE-502
Status published
Products (13)
mem0ai/mem0 1.0.0
mem0ai/mem0 1.0.1
mem0ai/mem0 1.0.10
mem0ai/mem0 1.0.11
mem0ai/mem0 1.0.2
mem0ai/mem0 1.0.3
mem0ai/mem0 1.0.4
mem0ai/mem0 1.0.5
mem0ai/mem0 1.0.6
mem0ai/mem0 1.0.7
... and 3 more
Published May 01, 2026
Tracked Since May 02, 2026