CVE-2026-0897 — Allocation of Resources Without Limits or Throttling in Keras

CWE-770 — Allocation of Resources Without Limits or Throttling8 documents7 sources

Severity

7.1HIGHNVD

EPSS

0.0%

top 91.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Keras Google Keras

Timeline

PublishedJan 15

Description

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service (DoS) through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive containing a valid model.weights.h5 file whose dataset declares an extremely large shape.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

▶CVEListV5google/keras3.0.0 — 3.13.0

▶PyPIkeras/keras3.0.0 — 3.12.1+1

▶NVDkeras/keras3.0.0 — 3.13.0

Patches

Patch: github.com ↗

🔴Vulnerability Details

OSV

Google Keras Allocates Resources Without Limits or Throttling in the HDF5 weight loading component↗2026-01-15

▶

GHSA

Google Keras Allocates Resources Without Limits or Throttling in the HDF5 weight loading component↗2026-01-15

▶

CVEList

Denial of Service in Keras via Excessive Memory Allocation in HDF5 Metadata↗2026-01-15

▶

OSV

CVE-2026-0897: Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3↗2026-01-15

▶

📋Vendor Advisories

Red Hat

Keras: Keras: Denial of Service via crafted HDF5 weight loading file↗2026-01-15

▶

Debian

CVE-2026-0897: keras - Allocation of Resources Without Limits or Throttling in the HDF5 weight loading ...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-0897 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶