Hugging Face's logo

somebeast
/
huntr-poc-safetensors-04

Model card Files
xet
 Community

You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

Log in or Sign Up to review the conditions and access this model content.

YAML Metadata Warning:empty or missing yaml metadata in repo card

Check out the documentation for more information.

SafeTensors PoC (Reversed data_offsets)

This repository contains a proof-of-concept model file for a SafeTensors parsing integrity issue.

Vulnerability Summary

A crafted .safetensors file can use reversed data_offsets values that are accepted and propagated into malformed repacked output.

PoC File

  • safetensors_e2e_malicious_reversed_offsets.safetensors

Reproduction Outline

  1. Load the PoC file through the vulnerable extraction path.
  2. Observe reversed offsets are accepted instead of rejected.
  3. Repack tensors and observe malformed ranges are emitted.

Security Impact

  • Tensor boundary integrity violation
  • Malformed model output propagation
  • Deterministic parser-flow corruption without requiring an endpoint
Downloads last month

-

Downloads are not tracked for this model. How to track
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support