Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/23 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-12479

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the DiskIOStore.make method within the Keras 3 model saving and loadin...

6.1CVSS6.6AI score0.00263EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/13 3:17 p.m.15 views

CVE-2026-1462

A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled TensorFlow SavedModels to be loaded during deserialization of .keras models, even when safemode=True. This bypasses the security guarantees of safemode and enables arbitrary attacker-controlled...

8.8CVSS7.6AI score0.00328EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/10/01 7:21 p.m.5 views

CVE-2025-9906 affecting package keras for versions less than 3.3.3-4

CVE-2025-9906 affecting package keras for versions less than 3.3.3-4. A patched version of the package is available...

8.6CVSS6.9AI score0.00186EPSS
Exploits0
OSV
OSV
added 2025/09/19 9:15 a.m.4 views

AZL-67505 CVE-2025-9905 affecting package keras for versions less than 3.3.3-4

The Keras Model.loadmodel method can be exploited to achieve arbitrary code execution, even with safemode=True. One can create a specially crafted .h5/.hdf5 model archive that, when loaded via Model.loadmodel, will trigger arbitrary code to be executed. This is achieved by crafting a special...

7.3CVSS7.4AI score0.00205EPSS
Exploits1References1
CBLMariner
CBLMariner
added 2025/09/05 9:14 p.m.7 views

CVE-2025-8747 affecting package keras for versions less than 3.3.3-3

CVE-2025-8747 affecting package keras for versions less than 3.3.3-3. A patched version of the package is available...

8.6CVSS7AI score0.00112EPSS
Exploits0
Rows per page
Query Builder