CVE-2025-54886: skops is a Python library which helps users share and ship their scikit-learn based models. In versions 0.12.0 and below
Summary
The skops Python library (used for sharing scikit-learn machine learning models) has a security flaw in versions 0.12.0 and earlier where the Card.get_model function can accidentally use joblib (a less secure loading method) instead of skops' safer approach. Joblib allows arbitrary code execution (running any code during model loading), which could let attackers run malicious code if they trick users into loading a specially crafted model file. This bypasses the security checks that skops normally provides.
Solution / Mitigation
This issue is fixed in version 0.13.0. Users should upgrade to skops version 0.13.0 or later.
Vulnerability Details
8.4(high)
EPSS: 0.3%
Classification
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-54886
First tracked: February 15, 2026 at 08:42 PM
Classified by LLM (prompt v3) · confidence: 85%