Every CVE whose affected-product data names Keras, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2024-3660 — CVSS 9.8 (critical): A arbitrary code injection vulnerability in TensorFlow's Keras framework (<2.13) allows attackers to execute arbitrary code with the same…
CVE-2025-1550 — CVSS 9.8 (critical): The Keras Model.load_model function permits arbitrary code execution, even with safe_mode=True, through a manually constructed, malicious…
CVE-2026-11816 — CVSS 8.1 (high): Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities located in…
CVE-2025-8747 — CVSS 7.8 (high): A safe mode bypass vulnerability in the `Model.load_model` method in Keras versions 3.0.0 through 3.10.0 allows an attacker to achieve…
CVE-2026-1462 — CVSS 7.8 (high): A vulnerability in the `TFSMLayer` class of the `keras` package, version 3.13.0, allows attacker-controlled TensorFlow SavedModels to be…
CVE-2026-1669 — CVSS 7.5 (high): Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 on all supported platforms…
CVE-2026-0897 — CVSS 7.5 (high): Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all…
CVE-2025-9906 — CVSS 7.3 (high): The Keras Model.load_model method can be exploited to achieve arbitrary code execution, even with safe_mode=True. One can create a…
CVE-2025-9905 — CVSS 7.3 (high): The Keras Model.load_model method can be exploited to achieve arbitrary code execution, even with safe_mode=True. One can create a…
CVE-2024-55459 — CVSS 6.5 (medium): An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the…