CVE-2025-5173
CVE-2025-5173 affects HumanSignal label-studio-ml-backend, specifically the PT File Handler's neural_nets.py load function. The vulnerability arises from manipulation of the path argument, leading to deserialization. This is described as a local attack with the affected release up to 9fb7f4aa1866...