CVE-2025-14931 | Hugging Face smolagents Python Executor deserialization (ZDI-25-1143)

A vulnerability classified as critical was found in Hugging Face smolagents. This affects an unknown function of the component Python Executor. The manipulation results in deserialization.

This vulnerability is cataloged as CVE-2025-14931. The attack may be launched remotely. There is no exploit available.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.VulDB Recent EntriesRead More