CVE-2025-12058 | Keras up to 3.11.x get_vocabulary deserialization (GHSA-qg93-c7p6-gg7f / EUVD-2025-36634)

A vulnerability classified as problematic has been found in Keras up to 3.11.x. This affects the function get_vocabulary. The manipulation leads to deserialization.

This vulnerability is documented as CVE-2025-12058. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More