Python/keras/3.12.1

Multi-backend Keras

https://pypi.org/project/keras
Apache-2.0

1 Security Vulnerabilities

Duplicate Advisory: Keras vulnerable to arbitrary file read in the model loading mechanism (HDF5 integration)

Published date: 2026-02-12T00:31:03Z
CVE: CVE-2026-1669
Links:

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-3m4q-jmj6-r34q. This link is maintained to preserve external references.

Original Description

Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 on all supported platforms allows a remote attacker to read local files and disclose sensitive information via a crafted .keras model file utilizing HDF5 external dataset references.

Affected versions: ["3.13.1", "3.13.0", "3.12.1", "3.12.0", "3.11.3", "3.11.2", "3.11.1", "3.11.0", "3.10.0", "3.9.2", "3.9.1", "3.9.0", "3.8.0", "3.7.0", "3.6.0", "3.5.0", "3.4.1", "3.4.0", "3.3.3", "3.3.2", "3.3.1", "3.3.0", "3.2.1", "3.2.0", "3.1.1", "3.1.0", "3.0.5", "3.0.4", "3.0.3", "3.0.2", "3.0.1", "3.0.0"]
Secure versions: [3.13.2, 3.14.0]
Recommendation: Update to version 3.14.0.

118 Other Versions

Version License Security Released
3.14.0 Apache-2.0
3.13.2 Apache-2.0
3.13.1 Apache-2.0 2
3.13.0 Apache-2.0 3
3.12.1 Apache-2.0 1
3.12.0 Apache-2.0 3
3.11.3 Apache-2.0 6
3.11.2 Apache-2.0 9
3.11.1 Apache-2.0 9
3.11.0 Apache-2.0 9
3.10.0 Apache-2.0 11
3.9.2 Apache-2.0 11 1970-01-01 - 00:00 over 56 years
3.9.1 Apache-2.0 11 1970-01-01 - 00:00 over 56 years
3.9.0 Apache-2.0 11 1970-01-01 - 00:00 over 56 years
3.8.0 Apache-2.0 13 1970-01-01 - 00:00 over 56 years
3.7.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.6.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.5.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.4.1 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.4.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.3.3 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.3.2 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.3.1 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.3.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.2.1 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.2.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.1.1 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.1.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.5 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.4 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.3 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.2 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.1 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
3.0.0 Apache-2.0 14 1970-01-01 - 00:00 over 56 years
2.15.0 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.15.0rc1 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.15.0rc0 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.14.0 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.14.0rc0 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.13.1 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.13.1rc1 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.13.1rc0 Apache-2.0 6 1970-01-01 - 00:00 over 56 years
2.12.0 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.12.0rc1 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.12.0rc0 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.11.0 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.11.0rc3 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.11.0rc2 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.11.0rc1 Apache-2.0 7 1970-01-01 - 00:00 over 56 years
2.11.0rc0 Apache-2.0 7 1970-01-01 - 00:00 over 56 years