sillytavern (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package sillytavern, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (11)
CVE-2026-44649 — CVSS 9.8 (critical): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2025-59159 — CVSS 9.6 (critical): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-44650 — CVSS 9.1 (critical): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-46372 — CVSS 8.5 (high): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-34524 — CVSS 8.3 (high): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-34522 — CVSS 8.1 (high): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-44648 — CVSS 7.5 (high): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-44652: SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-44651: SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-34523 — CVSS 5.3 (medium): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2026-34526 — CVSS 5.0 (medium): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…