AgentReadyHomeAgent ListingRuntimePricing

← Seedance 2.5 AI Video Generator

Seedance 2.5 AI Video Generator — agentic threat model

5.6AIVSS 5.6 · Medium

Seedance 2.5 is a high-fidelity video generation agent with low agentic risk, primarily acting as a deterministic content generator with minimal autonomous decision-making or tool-execution capabilities.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 4.3AARS uplift 1.3Factor sum 2.4/10Threat ×0.95Mitigation ×1.0
Autonomy of Action
0.10
Goal-Driven Planning
0.10
Self-Modification
0.00
Dynamic Tool Use
0.10
Persistent Memory
0.20
Contextual Awareness
0.40
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.80
Opacity & Reflexivity
0.70

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses the proprietary Seedance 2.5 model. Primary threats include adversarial multimodal inputs (up to 50 references) designed to bypass safety filters, model stealing of the proprietary weights, and outputting misaligned or copyrighted content.

L2 · Data Operations✓ mapped

Processes up to 50 multimodal references (images/videos) per request. Risks include processing malicious payloads embedded in reference files, data exfiltration via prompt injection, and lack of clarity on whether user-uploaded references are used to train future iterations of the model.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — The orchestration framework is not specified. However, the agent appears to have a simple pipeline (input references -> generate video) with minimal complex planning, tool-calling, or recursive reasoning, limiting framework-level vulnerabilities.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — High-performance GPU infrastructure is required for native 4K 10-bit rendering. Risks include container escape during heavy rendering workloads and resource exhaustion (DoS) due to the intensive processing requirements of 4K video generation.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — No explicit mention of content moderation guardrails, output validation, or logging mechanisms to detect and block the generation of deepfakes, NSFW content, or copyrighted material.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — The platform is closed-source and freemium. There is no mention of enterprise security controls, compliance certifications (e.g., SOC2), or explicit user data privacy policies regarding uploaded creative assets.

L7 · Agent Ecosystem✓ mapped

The agent operates as a standalone horizontal tool with no described multi-agent interactions, marketplace integrations, or external agent-to-agent communication channels.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).

These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology — every score is re-derived by the same automated method as an agent's public evidence changes.