A vulnerability was found in keras-team Keras up to 3.10/3.11/3.12.0 and classified as critical. Affected is the function filter_safe_tarinfos of the file keras/src/utils/file_utils.py. Executing a manipulation can lead to path traversal.

This vulnerability is handled as CVE-2026-12482. The attack can be executed remotely. There is not any exploit available.