{"data":{"id":"4dae6fe8-e1ca-478a-83d9-da85f15f2b03","title":"CVE-2026-12481: A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handling of deser","summary":"A vulnerability in Keras (a machine learning library) version 3.14.0 allows attackers to run arbitrary code by exploiting how the Lambda layer deserializes data (converts stored data back into usable form). The bug occurs because the safety check treats an unset value the same as a deliberately disabled one, allowing malicious bytecode (low-level machine instructions) to execute when functions like `keras.layers.deserialize()` are called without proper safety protections.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-12481","publishedAt":"2026-07-03T21:16:54.737Z","cveId":"CVE-2026-12481","cweIds":["CWE-502"],"cvssScore":null,"cvssSeverity":null,"severity":"critical","attackType":["model_poisoning"],"issueType":"vulnerability","affectedPackages":null,"affectedVendors":["HuggingFace"],"affectedVendorsRaw":["Keras","keras-team"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":null,"disclosureDate":"2026-07-03T21:16:54.737Z","capecIds":["CAPEC-586"],"crossRefCount":0,"attackSophistication":"moderate","impactType":["integrity","confidentiality","availability"],"aiComponentTargeted":"framework","llmSpecific":false,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":null}}