CVE-2026-11816 | keras-team keras up to 3.13.x Archive Extraction file_utils.py filter_safe_tarinfos path traversal

A vulnerability, which was classified as critical, was found in keras-team keras up to 3.13.x. Impacted is the function filter_safe_tarinfos of the file keras/src/utils/file_utils.py of the component Archive Extraction Handler. The manipulation results in path traversal.

This vulnerability is identified as CVE-2026-11816. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More