VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-fpk2-6qn4-auem

Essentials
Severities (15)
References (12)
Severity details (12)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-fpk2-6qn4-auem
Aliases	CVE-2025-12638 GHSA-9g7v-8wxv-mwxp
Summary	Keras version 3.11.3 is affected by a path traversal vulnerability in the keras.utils.get_file() function when extracting tar archives. The vulnerability arises because the function uses Python's tarfile.extractall() method without the security-critical filter='data' parameter. Although Keras attempts to filter unsafe paths using filter_safe_paths(), this filtering occurs before extraction, and a PATH_MAX symlink resolution bug triggers during extraction. This bug causes symlink resolution to fail due to path length limits, resulting in a security bypass that allows files to be written outside the intended extraction directory. This can lead to arbitrary file writes outside the cache directory, enabling potential system compromise or malicious code execution. The vulnerability affects Keras installations that process tar archives with get_file() and does not affect versions where this extraction method is secured with the appropriate filter parameter.
Status	Published
Exploitability	0.5
Weighted Severity	8.0
Risk	4.0
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
cvssv3	7.6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12638.json
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2025-12638
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2025-12638
epss	0.00031	https://api.first.org/data/v1/epss?cve=CVE-2025-12638
cvssv3.1_qr	HIGH	https://github.com/advisories/GHSA-9g7v-8wxv-mwxp
cvssv3.1	8.0	https://github.com/keras-team/keras
generic_textual	HIGH	https://github.com/keras-team/keras
cvssv3.1	8.0	https://github.com/keras-team/keras/commit/47fcb397ee4caffd5a75efd1fa3067559594e951
generic_textual	HIGH	https://github.com/keras-team/keras/commit/47fcb397ee4caffd5a75efd1fa3067559594e951
cvssv3	8	https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
cvssv3.1	8.0	https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
generic_textual	HIGH	https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
ssvc	Track*	https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
cvssv3.1	8.0	https://nvd.nist.gov/vuln/detail/CVE-2025-12638
generic_textual	HIGH	https://nvd.nist.gov/vuln/detail/CVE-2025-12638

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12638.json
		https://api.first.org/data/v1/epss?cve=CVE-2025-12638
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12638
		https://github.com/keras-team/keras/commit/47fcb397ee4caffd5a75efd1fa3067559594e951
2417711		https://bugzilla.redhat.com/show_bug.cgi?id=2417711
CVE-2025-12638		https://nvd.nist.gov/vuln/detail/CVE-2025-12638
f94f5beb-54d8-4e6a-8bac-86d9aee103f4		https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
GHSA-9g7v-8wxv-mwxp		https://github.com/advisories/GHSA-9g7v-8wxv-mwxp
RHSA-2025:23531		https://access.redhat.com/errata/RHSA-2025:23531
RHSA-2026:3713		https://access.redhat.com/errata/RHSA-2026:3713
RHSA-2026:4271		https://access.redhat.com/errata/RHSA-2026:4271
RHSA-2026:5807		https://access.redhat.com/errata/RHSA-2026:5807

No exploits are available.

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12638.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/keras-team/keras

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/keras-team/keras/commit/47fcb397ee4caffd5a75efd1fa3067559594e951

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-28T15:07:39Z/ Found at https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2025-12638

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploit Prediction Scoring System (EPSS)

Percentile	0.09383
EPSS Score	0.00031
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T17:00:37.309462+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2025/12xxx/CVE-2025-12638.json	38.6.0