CVE-2024-3660 Information

Description

A arbitrary code injection vulnerability in TensorFlow’s Keras framework (<2.13) allows attackers to execute arbitrary code with the same permissions as the application using a model that allow arbitrary code irrespective of the application.

Reference

https://kb.cert.org/vuls/id/253266 https://www.kb.cert.org/vuls/id/253266