Keras HDF5 Integration Arbitrary File Read Vulnerability

Vulnerability

A vulnerability allowing arbitrary file read has been identified in the model loading mechanism of Keras, specifically in versions 3.0.0 through 3.13.1, across all supported platforms. This issue arises from the integration with HDF5, which allows external dataset references to be exploited. A remote attacker could craft a .keras model file that, when processed, references local files and discloses sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized access and disclosure of local files, potentially containing sensitive information.

Added: Feb 12, 2026, 12:28 AM

Updated: Feb 12, 2026, 12:28 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Keras HDF5 Integration Arbitrary File Read Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating