Primary

Context

Google Keras HDF5 Weight Loading Component Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the HDF5 weight loading component of Google Keras, versions 3.0.0 through 3.13.0, across all platforms. This vulnerability allows remote attackers to cause memory exhaustion and crash the Python interpreter by using a specially crafted .keras archive that contains a valid model.weights.h5 file. The malicious file's dataset can declare an extremely large shape, leading to memory exhaustion.

Impact

Exploitation of this vulnerability causes memory exhaustion and crashes the Python interpreter, disrupting any running processes or applications that depend on it.

Remediation

Users can update to the latest version of Google Keras, where this vulnerability has been addressed, to mitigate this issue.

Added: Jan 15, 2026, 2:25 PM

Updated: Jan 15, 2026, 2:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.6

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Keras HDF5 Weight Loading Component Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating