VDB
MINI-h5jp-w9f3-8f63
MINI-h5jp-w9f3-8f63
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| MinimOS | py3-keras | 0, 0 |
| MinimOS | py3.12-keras | 0, 0 |
| MinimOS | py3-keras-auto | 0, 0 |
| MinimOS | py3.11-keras | 0, 0 |
| MinimOS | py3-supported-keras | 0, 0 |
| MinimOS | py3.13-keras | 0, 0 |
Exploit Intelligence
- Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service (DoS) through memory exhaustion and a crash of the Python interpreter via a crafted .keras (github-poc-repo)
- Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service (DoS) through memory exhaustion and a crash of the Python interpreter via a crafted .keras (github-poc)
- CVE-2026-0897.json (github-poc)
- package.py (github-poc)
Timeline
- Jan 16, 2026 CVE Published
- Mar 4, 2026 CVE Updated