CVE-2025-54413

Name of the Vulnerable Software and Affected Versions skops versions 0.11.0 and below skops versions prior to 12.0.0

Description skops is a Python library used for sharing and shipping scikit-learn based models. A vulnerability exists due to an inconsistency in the MethodNode component, allowing access to unexpected object fields through dot notation. This can be exploited to achieve arbitrary code execution at load time. The vulnerability bypasses untrusted type detection mechanisms by chaining multiple MethodNode instances to traverse the Python object hierarchy and access dangerous components, such as the builtins dictionary. The MethodNode allows access to attributes of existing objects via dot notation without proper checks, enabling access to dangerous attributes and methods.

Recommendations skops versions prior to 12.0.0 are vulnerable. Update to skops version 12.0.0 or later to resolve this issue.