6 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-42027
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The...
CVE-2026-1462
A flaw was found in the keras package. This vulnerability allows an attacker to execute unauthorized code on a victim's system. It occurs when a victim loads a specially crafted .keras model, even if the safemode security feature is active. The issue arises because the keras package can...
Keras 安全漏洞
Keras is an open-source deep learning framework with multiple backends. Versions of Keras 3.13.1 and earlier contain security vulnerabilities. These vulnerabilities stem from defects in the model loading mechanism HDF5 integration, which could allow remote attackers to read local files through...
Improper Handling of Undefined Values
Overview Affected versions of this package are vulnerable to Improper Handling of Undefined Values in the torch.cummin component when compiling a model with Inductor. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted model that triggers a name...
Google TensorFlow 输入验证错误漏洞
Google TensorFlow is an end-to-end open source machine learning platform. An integer overflow vulnerability exists in the code used to allocate TFLiteIntArray in Google TensorFlow. An attacker can exploit the vulnerability via a specially crafted model to cause dereferencing of invalid pointers...
PT-2020-6980 · Unknown +1 · Scikit-Learn +1
Name of the Vulnerable Software and Affected Versions: Libsvm version v324 scikit-learn version 0.23.2 Description: The issue is related to the svm predict values function in svm.cpp of Libsvm, which can cause a denial of service segmentation fault when a crafted model SVM with a large value in t...