Google · Tensorflow · CVE-2024-3660
**Name of the Vulnerable Software and Affected Versions**
TensorFlow's Keras framework versions prior to 2.13
**Description**
A code injection issue in TensorFlow's Keras framework allows attackers to execute arbitrary code with the same permissions as the application. This can be achieved by using a model that permits arbitrary code execution, regardless of the application's permissions. The vulnerability can be exploited when loading a model created with an older version, potentially bypassing a patch.
**Recommendations**
For versions prior to 2.13, consider disabling the use of models created with older versions until a patch is available.
As a temporary workaround, restrict the loading of models to minimize the risk of exploitation.
Avoid using the LambdaLayer in Keras until the issue is resolved.