Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/05/06 11:9 p.m.2 views

EUVD-2026-2735

Keras vulnerable to DoS via Malicious .keras Model HDF5 Shape Bomb Causes Petabyte Allocation in KerasFileEditor...

7.5CVSS6.7AI score0.00033EPSS
Exploits3References6
Packet Storm
Packet Stormadded 2026/03/31 12:0 a.m.119 views

📄 Google Keras 3.13.0 Denial of Service

A denial of service vulnerability exists in the HDF5 weight loading component of Google Keras versions 3.0.0 through 3.13.0 on all platforms. The vulnerability is caused by the absence of any validation or throttling when processing HDF5 dataset shape metadata declared inside a .keras archive...

7.5CVSS5.9AI score0.00033EPSS
Exploits3
OSV
OSVadded 2026/01/15 3:31 p.m.2 views

GHSA-XFHX-R7WW-5995 Duplicate Advisory: Google Keras Allocates Resources Without Limits or Throttling in the HDF5 weight loading component

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-mgx6-5cf9-rr43. This link is maintained to preserve external references. Original Description Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 throu...

7.1CVSS6.7AI score0.00033EPSS
Exploits3References6
NVD
NVDadded 2026/01/15 2:16 p.m.4 views

CVE-2026-0897

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service DoS through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive...

7.5CVSS0.00033EPSS
Exploits3References1
PyPA
PyPAadded 2026/01/15 2:16 p.m.25 views

PYSEC-2026-73

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading componentin GoogleKeras3.0.0 through 3.13.0on all platformsallows a remote attackerto cause a Denial of Service DoS through memory exhaustion and a crash of the Python interpretervia a crafted .keras archive containin...

7.5CVSS6.8AI score0.00033EPSS
Exploits3References2Affected Software1
CVE
CVEadded 2026/01/15 2:9 p.m.23 views

CVE-2026-0897

CVE-2026-0897 affects Google Keras (3.0.0–3.13.0) via the HDF5 weight loading component. A crafted .keras archive containing a valid model.weights.h5 file with an extremely large dataset shape can trigger memory exhaustion and crash the Python interpreter, causing a Denial of Service. Some connec...

7.5CVSS6.6AI score0.00033EPSS
Exploits3References1Affected Software1
Debian CVE
Debian CVEadded 2026/01/15 2:9 p.m.3 views

CVE-2026-0897

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service DoS through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive...

7.5CVSS6.6AI score0.00033EPSS
Exploits3
Rows per page
Query Builder