CVE-2023-6730: 
NixOS vulnerability analysis and mitigation

CVE-2023-6730 is a deserialization of untrusted data vulnerability affecting the GitHub repository huggingface/transformers prior to version 4.36. The vulnerability was discovered and disclosed in December 2023, with the initial CVE record being created on December 12, 2023 (CVE Details).

The vulnerability is classified as a deserialization of untrusted data issue (CWE-502). It received a CVSS v3.1 base score of 8.8 HIGH from NVD (Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and a CVSS 3.0 score of 9.0 CRITICAL from huntr.dev (Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H) (NVD).

The vulnerability allows for Remote Code Execution (RCE) in Hugging Face Transformers via RagRetriever.from_pretrained() function. This could potentially lead to arbitrary code execution if exploited, affecting the confidentiality, integrity, and availability of the system (SecurityWeek).

The vulnerability has been patched in version 4.36 of the huggingface/transformers repository. For users who need to use pickle.load() functionality, the environment variable TRUST_REMOTE_CODE must be set to True, though this should only be done after verifying the safety of the pickle data (GitHub Patch).

The vulnerability was discovered as part of a broader security audit that revealed eight vulnerabilities in the AI development supply chain. This discovery highlights the growing importance of security in AI/ML development pipelines and the need for specialized security measures in AI applications (SecurityWeek).