CVE-2025-54412
CVE-2025-54412 is a high-severity vulnerability with a CVSS 4.0 base score of 8.7. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-351.
Key facts
- Severity: High (CVSS 4.0 base score 8.7)
- EPSS exploit prediction: 0% (3rd percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-22763
- Weakness: CWE-351
- Published:
- Last modified:
Description
skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below contain a inconsistency in the OperatorFuncNode which can be exploited to hide the execution of untrusted operator methods. This can then be used in a code reuse attack to invoke seemingly safe functions and escalate to arbitrary code execution with minimal and misleading trusted types. This is fixed in version 0.12.0.
Frequently asked questions
- What is CVE-2025-54412?
- skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below contain a inconsistency in the OperatorFuncNode which can be exploited to hide the execution of untrusted operator methods. This can then be used in a code reuse attack to invoke seemingly safe functions and escalate to arbitrary code execution with minimal and misleading trusted types. This is fixed in version 0.12.0.
- How severe is CVE-2025-54412?
- CVE-2025-54412 has a CVSS 4.0 base score of 8.7, rated high severity.
- Is CVE-2025-54412 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (3rd percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-54412?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- Does CVE-2025-54412 have an EU (EUVD) identifier?
- Yes. CVE-2025-54412 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-22763.
- When was CVE-2025-54412 published?
- CVE-2025-54412 was published on 2025-07-26 and last updated on 2026-06-17.
References
- https://github.com/skops-dev/skops/commit/0aeca055509dfb48c1506870aabdd9e247adf603
- https://github.com/skops-dev/skops/releases/tag/v0.12.0
- https://github.com/skops-dev/skops/security/advisories/GHSA-m7f4-hrc6-fwg3
Other CWE-351 vulnerabilities
- CVE-2025-30510 — Critical (CVSS 9.8): An attacker can upload an arbitrary file instead of a plant image.
- CVE-2025-54413 — High (CVSS 8.7): skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below…
- CVE-2025-65960 — Medium (CVSS 6.6): Contao is an Open Source CMS. From version 4.0.0 to before 4.13.57, before 5.3.42, and before 5.6.5, back end users…
- CVE-2024-4769 — Medium (CVSS 5.9): When importing resources using Web Workers, error messages would distinguish the difference between…
- CVE-2026-41341 — Medium (CVSS 5.4): OpenClaw before 2026.3.31 contains a logic error in Discord component interaction routing that misclassifies group…
- CVE-2025-47939 — Medium (CVSS 5.4): TYPO3 is an open source, PHP based web content management system. By design, the file management module in TYPO3’s…