Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2025/10/17 4:15 p.m.4 views

CVE-2025-49655

Deserialization of untrusted data can occur in versions of the Keras framework running versions 3.11.0 up to but not including 3.11.3, enabling a maliciously uploaded Keras file containing a TorchModuleWrapper class to run arbitrary code on an end user’s system when loaded despite safe mode being...

9.8CVSS7.3AI score0.0071EPSS
Exploits0References3
CVE
CVE
added 2025/10/17 3:20 p.m.40 views

CVE-2025-49655

CVE-2025-49655 affects the Keras framework with deserialization of untrusted data in versions 3.11.0 up to, but not including, 3.11.3. A maliciously uploaded Keras file containing a TorchModuleWrapper class can execute arbitrary code on an end user’s system when loaded, even if safe mode is enabl...

9.8CVSS7AI score0.0071EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/10/17 3:20 p.m.4 views

CVE-2025-49655

Deserialization of untrusted data can occur in versions of the Keras framework running versions 3.11.0 up to but not including 3.11.3, enabling a maliciously uploaded Keras file containing a TorchModuleWrapper class to run arbitrary code on an end user’s system when loaded despite safe mode being...

9.8CVSS8.2AI score0.0071EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/17 3:20 p.m.9 views

CVE-2025-49655

Deserialization of untrusted data can occur in versions of the Keras framework running versions 3.11.0 up to but not including 3.11.3, enabling a maliciously uploaded Keras file containing a TorchModuleWrapper class to run arbitrary code on an end user’s system when loaded despite safe mode being...

9.8CVSS0.0071EPSS
Exploits0References2
Rows per page
Query Builder