AI Threat Alert

Keras Vulnerabilities

pip ML Libraries

60

Risk Score

13

Total CVEs

5

Critical

pip

Ecosystem

Apr 13, 2026

Last CVE

53%

Patch Rate

32d

Avg Time to Patch

64,072 stars 19,775 forks 187 issues 1,541 dependents Last push May 16, 2026

OpenSSF Scorecard 7.1/10

Known Vulnerabilities (13 total, page 1 of 1)

Severity CVE ID Summary CVSS Published

HIGH CVE-2026-1462 Keras: safe_mode bypass allows RCE via model deserialization 8.8 Apr 13, 2026 HIGH CVE-2026-0897 keras: Resource Exhaustion enables DoS -- Jan 15, 2026 HIGH CVE-2026-1669 keras: File Control enables path manipulation 7.5 Feb 11, 2026 CRITICAL CVE-2025-12060 keras: Path Traversal enables file access 9.8 Oct 30, 2025 MEDIUM CVE-2025-12058 Keras: safe_mode bypass enables file read and SSRF -- Oct 29, 2025 CRITICAL CVE-2025-49655 keras: Deserialization enables RCE 9.8 Oct 17, 2025 HIGH CVE-2025-9906 Keras: safe_mode bypass enables RCE via model load 7.3 Sep 19, 2025 HIGH CVE-2025-9905 Keras: safe_mode bypass enables RCE via .h5 model files 7.3 Sep 19, 2025 HIGH CVE-2025-8747 Keras: safe mode bypass enables RCE via model load 7.8 Aug 11, 2025 CRITICAL CVE-2025-1550 Keras: safe_mode bypass enables RCE via model loading 9.8 Mar 11, 2025 MEDIUM CVE-2024-55459 Keras: path traversal enables arbitrary file write 6.5 Jan 8, 2025 CRITICAL CVE-2024-49326 Affiliator WP Plugin: Unauthenticated Web Shell Upload 9.8 Oct 20, 2024 CRITICAL CVE-2024-3660 Keras: RCE via malicious model deserialization 9.8 Apr 16, 2024

Monitor Keras in your stack

Get instant alerts when new vulnerabilities affect Keras. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring