CVE-2025-1550

Exploit

EPSS 2.8%
Veröffentlicht 11.03.2025 08:12:34
Zuletzt bearbeitet 31.07.2025 16:55:39
Quelle cve-coordination@google.com
CVE-Watchlists
Login
Unerledigt
Login

Arbitrary Code Execution via Crafted Keras Config for Model Loading

The Keras Model.load_model function permits arbitrary code execution, even with safe_mode=True, through a manually constructed, malicious .keras archive. By altering the config.json file within the archive, an attacker can specify arbitrary Python modules and functions, along with their arguments, to be loaded and executed during model loading.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Keras ≫ Keras Version >= 3.0.0 < 3.8.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.8%	0.846

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cve-coordination@google.com	7.3	0	0	CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://github.com/keras-team/keras/pull/20751

Patch

Issue Tracking

https://towerofhanoi.it/writeups/cve-2025-1550/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2025-1550

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-1550

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-1550

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-1550