CVE-2026-31253: The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains an ins
highvulnerability
security
Summary
The flash-attention training framework has a vulnerability in how it loads saved model checkpoints (snapshots of a model's learned weights). An attacker can hide malicious code inside a checkpoint file, and when someone loads that file using the `load_checkpoint()` function, the code runs automatically on their computer without permission.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.0%
Disclosure Date
May 11, 2026
Classification
Attack Type
Model TheftSupply Chain
Attack SophisticationModerate
Impact (CIA+S)
confidentiality
Affected Vendors
Related Issues
Monthly digest — independent AI security research
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-31253
First tracked: May 11, 2026 at 02:10 PM
Classified by LLM (prompt v3) · confidence: 92%