Vulnerabilities in Skops-dev
4 resultsCVE-2024-37065HIGHDeserialization of untrusted data can occur in versions 0.6 or newer of the skops python library, enabling a maliciously crafted model to ruEPSS 0.2%CVE-2025-54886HIGHskops: Card.get_model does not block arbitrary code executionEPSS 0.2%CVE-2025-54413HIGHskops' MethodNode can access unexpected object fields through dot notation, leading to arbitrary code execution at load timeEPSS 0.1%CVE-2025-54412HIGHskops' Inconsistent Trusted Type Validation Enables Hidden `operator` Methods ExecutionEPSS 0.1%