Lucene search
K

5 matches found

Wolfi
Wolfi
added 2026/01/07 1:51 a.m.4 views

CVE-2025-9905 vulnerabilities

Vulnerabilities for packages: tensorflow-cpu-jupyter...

7.3CVSS7AI score0.00205EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/09/19 8:12 p.m.5 views

bacpipe (>=1.2.0 <=1.3.2.dev0), decima2 (>=0.1.0 <=0.2.1) +11 more potentially affected by CVE-2025-9905 via keras (>=3.0.0 <=3.11.0)

keras PYPI version =3.0.0, =1.2.0, =0.1.0, =1.0.3, =0.0.28, =0.2.0, =2.4.0, =0.1.0, =0.1.1, =1.1.0, =1.0.0, =1.2.0 Source cves: CVE-2025-9905 Source advisory: OSV:GHSA-36RR-WW3J-VRJV...

7.3CVSS7.4AI score0.00205EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/09/19 6:53 p.m.1 views

CVE-2025-9905

The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 model archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special .h5...

8.6CVSS6.7AI score0.00205EPSS
Exploits1References5
vulnersOsv
vulnersOsv
added 2025/09/19 9:15 a.m.7 views

bacpipe (>=1.2.0 <=1.3.2.dev0), decima2 (>=0.1.0 <=0.2.1) +11 more potentially affected by CVE-2025-9905 via keras (>=3.0.0 <=3.11.0)

keras PYPI version =3.0.0, =1.2.0, =0.1.0, =1.0.3, =0.0.28, =0.2.0, =2.4.0, =0.1.0, =0.1.1, =1.1.0, =1.0.0, =1.2.0 Source cves: CVE-2025-9905 Source advisory: OSV:PYSEC-2025-123...

7.3CVSS7.4AI score0.00205EPSS
Exploits1
Cvelist
Cvelist
added 2025/09/19 8:16 a.m.9 views

CVE-2025-9905 Arbitary Code execution in Keras load_model()

The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 model archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special...

7.3CVSS0.00205EPSS
Exploits1References2
Rows per page
Query Builder