CVE-2025-12060 | Keras up to 3.11.3 tar get_file path traversal

A vulnerability classified as critical has been found in Keras up to 3.11.3. This issue affects the function get_file of the component tar Handler. Performing manipulation results in path traversal.

This vulnerability is cataloged as CVE-2025-12060. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More