CVE-2026-1669

High CVSS: 7.1

Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 on all supported platforms allows a remote attacker to read local files and disclose sensitive information via a crafted .keras model file utilizing HDF5 external dataset references.

Vendor

Keras

Product

Keras

CWE

CWE-73

Yayın Tarihi

2026-02-11 23:16:03

Güncelleme

2026-02-26 23:23:59

Source Identifier

cve-coordination@google.com

KEV Date Added

Kategoriler

CWE-73 Keras HIGH Keras 2026

Referanslar

https://github.com/google/security-research/security/advisories

Benzer Kayıtlar

High

CVE-2026-0897

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through…

High

CVE-2025-9905

The Keras Model.load_model method can be exploited to achieve arbitrary code execution, even with safe_mode=True. One c…

High

CVE-2025-9906

The Keras Model.load_model method can be exploited to achieve arbitrary code execution, even with safe_mode=True. One c…

High

CVE-2025-8747

A safe mode bypass vulnerability in the `Model.load_model` method in Keras versions 3.0.0 through 3.10.0 allows an attac…

High

CVE-2025-1550

The Keras Model.load_model function permits arbitrary code execution, even with safe_mode=True, through a manually const…

Medium

CVE-2024-55459

An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar fi…