Every CVE whose affected-product data names Ibm Qiskit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-2000 — CVSS 9.8 (critical): A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege escalation when deserialising…
CVE-2025-1403 — CVSS 8.6 (high): Qiskit SDK 0.45.0 through 1.2.4 could allow a remote attacker to cause a denial of service using a maliciously crafted QPY file containing…