CVE-2025-1550 PoC — Keras 代码注入漏洞

Source

https://github.com/ChCh0i/cve-2025-1550

Associated Vulnerability

Title:Keras 代码注入漏洞 (CVE-2025-1550)
Description:Keras是Keras开源的一个多后端深度学习框架。 Keras存在代码注入漏洞，该漏洞源于允许通过手动构造的恶意keras存档执行任意代码，即使在安全模式下也是如此。

Readme

# cve-2025-1550
- keras model json rce

File Snapshot


 [4.0K]  /data/pocs/8284f1e643cf792232aeafa045202d685c0cb55d
├── [1.2K]  app.py
├── [ 835]  check.py
├── [1.5K]  exploit.py
├── [1.8K]  index.html
└── [  39]  README.md

1 directory, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.