Is TensorFlow Keras “Safe Mode” Actually Safe? Bypassing safe_mode Mitigation to Achieve Arbitrary Code Execution
Tags
| attack-pattern: | Model Models Exploits - T1587.004 Exploits - T1588.005 Python - T1059.006 Ssh - T1021.004 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 83d34b60-d5f5-4447-9bad-a0369fb7dde0 |
| Fingerprint | 8133f116bbd532b |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | March 12, 2025, 1:07 p.m. |
| Added to db | March 12, 2025, 3:02 p.m. |
| Last updated | March 19, 2025, 8:18 a.m. |
| Headline | Is TensorFlow Keras “Safe Mode” Actually Safe? Bypassing safe_mode Mitigation to Achieve Arbitrary Code Execution |
| Title | Is TensorFlow Keras “Safe Mode” Actually Safe? Bypassing safe_mode Mitigation to Achieve Arbitrary Code Execution |
| Detected Hints/Tags/Attributes | 31/1/8 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://jfrog.com/blog/keras-safe_mode-bypass-vulnerability/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 144 | ✔ | From the Frog's mouth - JFrog Blog | https://jfrog.com/blog/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 3 | cve-2024-3660 |
|
| Details | Domain | 1 | lambdalayer.call |
|
| Details | Domain | 367 | raw.githubusercontent.com |
|
| Details | File | 192 | config.json |
|
| Details | File | 167 | os.sys |
|
| Details | File | 208 | index.js |
|
| Details | Github username | 1 | andr3colonel |
|
| Details | Url | 1 | https://raw.githubusercontent.com/andr3colonel/when_you_watch_computer/refs/heads/master/index.js |