A arbitrary code injection vulnerability in TensorFlow's...
Unreviewed
Published
Apr 16, 2024
to the GitHub Advisory Database
•
Updated Apr 16, 2024
Description
Published by the National Vulnerability Database
Apr 16, 2024
Published to the GitHub Advisory Database
Apr 16, 2024
Last updated
Apr 16, 2024
A arbitrary code injection vulnerability in TensorFlow's Keras framework (<2.13) allows attackers to execute arbitrary code with the same permissions as the application using a model that allow arbitrary code irrespective of the application.
References