PT-2025-11258 · Qiskit · Qiskit

Jake Lishman

Published

2025-03-14

Updated

2025-03-20

CVE-2025-2000

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Qiskit versions 0.18.0 through 1.4.1

Description: A maliciously crafted QPY file can potentially execute arbitrary-code embedded in the payload without privilege escalation when deserialising QPY formats less than 13. This issue affects python processes calling Qiskit's qiskit.qpy.load() function, allowing the execution of arbitrary Python code embedded in the binary file as part of a specially constructed payload.

Recommendations: For Qiskit versions 0.18.0 through 1.4.1, consider disabling the qiskit.qpy.load() function until a patch is available to prevent the execution of arbitrary Python code from malicious QPY files. Restrict the use of QPY files with versions less than 13 to minimize the risk of exploitation.

Fix

LPE

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2025-2000

GHSA-3PWP-2FQJ-6G2P

GHSA-6M2C-76FF-6VRF

Affected Products

Qiskit

PT-2025-11258 · Qiskit · Qiskit

CVE-2025-2000

Weakness Enumeration

Related Identifiers

Affected Products

References · 17