Path Traversal Vulnerability in Keras Model Saving and Loading Library by Keras Team
CVE-2026-12479

6.1MEDIUM

Key Information:

Vendor: Keras-team
Status: Keras-team/keras
Vendor: CVE Published:; 22 June 2026

What is CVE-2026-12479?

A path traversal vulnerability is present in Keras version 3.14.0, specifically within the DiskIOStore.make method. This issue stems from insufficient sanitization of user-supplied layer names, which are used to build directory paths. While forward slashes are restricted in layer names, attackers can exploit the lack of restrictions on directory traversal sequences. By crafting a malicious Keras model, an attacker can execute unauthorized file system operations, such as creating directories or writing files outside of the intended temporary working directory. This poses significant security risks, allowing for potential manipulation of sensitive data and system integrity.

Affected Version(s)

keras-team/keras <= unspecified

References

https://huntr.com/bounties/188836b9-12fc-49c7-8dbf-04f60f...

CVSS V3.0

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 22, 2026
Vulnerability Reserved
Jun 17, 2026

CVE-2026-12479 Data

JSON

Keras-team

What is CVE-2026-12479?

Affected Version(s)

References

CVSS V3.0

Timeline