Lucene search
+L

70 matches found

OSV
OSV
added 2026/06/10 1:38 p.m.11 views

GHSA-9VC9-4JV3-RF86 @hulumi/policies has a HULUMI-H5 bypass via decoy sibling resources targeting a different bucket

Affected: @hulumi/policies 1.4.0 — Fixed in: 1.4.0 — Severity: High — CWE-284 Improper Access Control Summary HULUMI-H1 forbids raw aws:s3:Bucket outside of Hulumi's SecureBucket component, with one exemption: a raw bucket that's a child of a SecureBucket is allowed because the component is...

8.5CVSS5.4AI score0.00039EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in hdf5

There is a heap-based buffer overflow vulnerability in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially crafted GIF file can lead to code execution. An attacker can provide a malicious file to exploit this vulnerability...

7.8CVSS7.7AI score0.00618EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hciuart: A missing NULL check was added in h5enqueue. The Syzbot encountered a general protection fault in pmruntimeresume. The issue was due to a missing NULL check. hu-serdev can be NULL, and we should not blindly...

5.5CVSS6.3AI score0.00245EPSS
Exploits0References2
OSV
OSV
added 2026/04/10 4:16 p.m.3 views

DEBIAN-CVE-2026-29043

HDF5 is software for managing data. In 1.14.1-2 and earlier, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition in the H5Trefmemsetnull method. This can lead to a denial-of-service condition, and potentially further issues such as remote...

5.5CVSS6.7AI score0.00213EPSS
Exploits1References1
NVD
NVD
added 2026/04/09 8:16 p.m.26 views

CVE-2026-34734

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...

7.8CVSS0.00193EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/04/09 7:1 p.m.28 views

CVE-2026-34734

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...

7.8CVSS5.2AI score0.00193EPSS
Exploits1
Huntr
Huntr
added 2026/02/25 11:32 a.m.15 views

Incomplete Fix for CVE-2026-1669: HDF5 External Storage File Disclosure in Legacy H5 Loading

Description Keras 3 patched CVE-2026-1669 HDF5 External Storage File Disclosure in the new .keras and .weights.h5 loading paths by adding verifydataset to check for dataset.external in H5IOStore. However, the legacy .h5 loading path keras/src/legacy/saving/legacyh5format.py was not patched. This...

7.5CVSS5.9AI score0.00298EPSS
Exploits0
NVD
NVD
added 2026/02/19 8:25 p.m.17 views

CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on...

7.8CVSS0.00356EPSS
Exploits1References4
OSV
OSV
added 2026/01/15 2:9 p.m.9 views

CVE-2026-0897 Denial of Service in Keras via Excessive Memory Allocation in HDF5 Metadata

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service DoS through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive...

7.1CVSS6.8AI score0.00299EPSS
Exploits3References9
RedhatCVE
RedhatCVE
added 2026/01/03 3:7 p.m.15 views

CVE-2025-54166

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS...

6.9CVSS6.8AI score0.00285EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/11/11 12:0 a.m.8 views

QNAP QuTS hero Multiple Vulnerabilities (QSA-25-45)

QNAP QuTS Hero is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero"; ifdescriptio...

9.8CVSS8.4AI score0.00935EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/10/07 12:0 a.m.4 views

QNAP QuTS Hero DoS Vulnerability (QSA-25-36)

QNAP QuTS Hero is prone to a NULL pointer dereference vulnerability resulting in a denial of service DoS. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5.1CVSS6.8AI score0.00356EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-47618

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00766EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-47617

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00766EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-15421

Malicious code in bioql PyPI...

7.5CVSS5.5AI score0.01344EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-49869

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01242EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-9905

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 mod...

7.3CVSS7.8AI score0.00205EPSS
Exploits1References3
OSV
OSV
added 2025/09/19 9:31 a.m.6 views

GHSA-77WQ-646F-JRM2 Duplicate Advisory: The Keras `Model.load_model` method **silently** ignores `safe_mode=True` and allows arbitrary code execution when a `.h5`/`.hdf5` file is loaded.

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-36rr-ww3j-vrjv. This link is maintained to preserve external references. Original Description The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One c...

7.3CVSS7.4AI score0.00205EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/09/19 8:16 a.m.2 views

CVE-2025-9905 Arbitary Code execution in Keras load_model()

The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 model archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special...

7.3CVSS6.9AI score0.00205EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/09/19 8:16 a.m.10 views

CVE-2025-9905 Arbitary Code execution in Keras load_model()

The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 model archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special...

7.3CVSS0.00205EPSS
Exploits1References2
Rows per page
Query Builder