Python/keras/3.12.1

Multi-backend Keras

Repo Link: https://pypi.org/project/keras
License: Apache-2.0

1 Security Vulnerabilities

Duplicate Advisory: Keras vulnerable to arbitrary file read in the model loading mechanism (HDF5 integration)

Published date: 2026-02-12T00:31:03Z

CVE: CVE-2026-1669

Links:

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-3m4q-jmj6-r34q. This link is maintained to preserve external references.

Original Description

Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 on all supported platforms allows a remote attacker to read local files and disclose sensitive information via a crafted .keras model file utilizing HDF5 external dataset references.

Affected versions: ["3.13.1", "3.13.0", "3.12.1", "3.12.0", "3.11.3", "3.11.2", "3.11.1", "3.11.0", "3.10.0", "3.9.2", "3.9.1", "3.9.0", "3.8.0", "3.7.0", "3.6.0", "3.5.0", "3.4.1", "3.4.0", "3.3.3", "3.3.2", "3.3.1", "3.3.0", "3.2.1", "3.2.0", "3.1.1", "3.1.0", "3.0.5", "3.0.4", "3.0.3", "3.0.2", "3.0.1", "3.0.0"]

Secure versions: [3.13.2, 3.14.0]

Recommendation: Update to version 3.14.0.

118 Other Versions

Version	License	Security	Released
2.10.0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.10.0rc1	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.10.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.9.0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.9.0rc2	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.9.0rc1	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.9.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.8.0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.8.0rc1	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.8.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.7.0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.7.0rc2	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.7.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.6.0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.6.0rc3	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.6.0rc2	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.6.0rc1	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.6.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.5.0rc0	Apache-2.0	7	1970-01-01 - 00:00	over 56 years
2.4.3	MIT	7	1970-01-01 - 00:00	over 56 years
2.4.2	MIT	7	1970-01-01 - 00:00	over 56 years
2.4.1	MIT	7	1970-01-01 - 00:00	over 56 years
2.4.0	MIT	7	1970-01-01 - 00:00	over 56 years
2.3.1	MIT	7	1970-01-01 - 00:00	over 56 years
2.3.0	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.5	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.4	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.3	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.2	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.1	MIT	7	1970-01-01 - 00:00	over 56 years
2.2.0	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.6	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.5	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.4	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.3	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.2	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.1	MIT	7	1970-01-01 - 00:00	over 56 years
2.1.0	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.9	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.8	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.7	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.6	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.5	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.4	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.3	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.2	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.1	MIT	7	1970-01-01 - 00:00	over 56 years
2.0.0	MIT	7	1970-01-01 - 00:00	over 56 years
1.2.2	MIT	7	1970-01-01 - 00:00	over 56 years
1.2.1	MIT	7	1970-01-01 - 00:00	over 56 years