Keras Model Deserialization Remote Code Execution (CVE-2025-1550)
A deserialization vulnerability in Keras allows attackers to execute arbitrary system commands when loading a malicious machine learning model. This proof-of-concept demonstrates how a crafted .keras file can trigger code execution during model loading.