CVE-2025-9906 | Keras up to 3.10.x enable_unsafe_deserialization

Inserito da Angelo Barbosa | Set 19, 2025 | CVE

A vulnerability categorized as problematic has been discovered in Keras up to 3.10.x. This impacts the function enable_unsafe_deserialization. Such manipulation leads to deserialization.

This vulnerability is traded as CVE-2025-9906. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.

CVE-2025-9906 | Keras up to 3.10.x enable_unsafe_deserialization

Post correlati

CVE-2024-43252 | Crew HRM Plugin up to 1.1.1 on WordPress deserialization

CVE-2024-11022 | SICK AG InspectorP61x/InspectorP62x Web Server nonce re-use

CVE-2024-12260 | Ultimate Endpoints with Rest Api Plugin up to 2.2.2 on WordPress cross site scripting

CVE-2025-1962 | projectworlds Online Hotel Booking 1.0 /admin/addroom.php roomname sql injection