CVE-2026-11816 | keras-team keras up to 3.13.x Archive Extraction file_utils.py filter_safe_tarinfos path traversal

Inserito da Angelo Barbosa | Giu 11, 2026 | CVE

A vulnerability, which was classified as critical, was found in keras-team keras up to 3.13.x. Impacted is the function filter_safe_tarinfos of the file keras/src/utils/file_utils.py of the component Archive Extraction Handler. The manipulation results in path traversal.

This vulnerability is identified as CVE-2026-11816. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-11816 | keras-team keras up to 3.13.x Archive Extraction file_utils.py filter_safe_tarinfos path traversal

Post correlati

CVE-2024-30109 | HCL DRYiCE AEX 10 Web Application ui layer (KB0114193)

CVE-2026-27145 | crypto-x509 up to 1.25.10/1.26.3 on Go VerifyHostname algorithmic complexity

CVE-2025-9841 | code-projects Mobile Shop Management System 1.0 AddNewProduct.php ProductImage unrestricted upload

CVE-2024-6744 | Cellopoint Secure Email Gateway up to 4.5.0 SMTP Listener stack-based overflow