Home > Vulnerability Database > CVE-2025-1550

Mend.io Vulnerability Database

CVE-2025-1550

Good to know:

Date: March 11, 2025

The Keras Model.load_model function permits arbitrary code execution, even with safe_mode=True, through a manually constructed, malicious .keras archive. By altering the config.json file within the archive, an attacker can specify arbitrary Python modules and functions, along with their arguments, to be loaded and executed during model loading.

Severity Score

9.8

Related Resources (9)

Url: https://towerofhanoi.it/writeups/cve-2025-1550/

Url: https://github.com/keras-team/keras

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-1550

Url: https://github.com/keras-team/keras/pull/20751

Url: https://security-tracker.debian.org/tracker/CVE-2025-1550

Url: https://github.com/keras-team/keras/commit/e67ac8ffd0c883bec68eb65bb52340c7f9d3a903

Url: https://github.com/keras-team/keras/releases/tag/v3.9.0

Url: https://github.com/keras-team/keras/security/advisories/GHSA-48g7-3x6r-xfhp

Url: https://www.mend.io/vulnerability-database/CVE-2025-1550

Severity Score

9.8

Weakness Type (CWE)

Improper Control of Generation of Code ('Code Injection')

CWE-94

Top Fix

Upgrade Version

Upgrade to version keras - 3.9.0;keras - 3.9.0;https://github.com/keras-team/keras.git - v3.9.0

Learn More

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-1550

Good to know:

Date: March 11, 2025

Severity Score

Related Resources (9)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?