CVE-2025-54413

Description

skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below contain an inconsistency in MethodNode, which can be exploited to access unexpected object fields through dot notation. This can be used to achieve arbitrary code execution at load time. While this issue may seem similar to GHSA-m7f4-hrc6-fwg3, it is actually more severe, as it relies on fewer assumptions about trusted types. This is fixed in version 12.0.0.

Weakness Type (CWE)

CWE-351 CWE-351

References

Other References

https://drive.google.com/drive/folders/1bmVV18mnPbWy21hVYgf51yVJpf78vtB_?usp=sharing https://github.com/skops-dev/skops/commit/0aeca055509dfb48c1506870aabdd9e247adf603 https://github.com/skops-dev/skops/releases/tag/v0.12.0 https://github.com/skops-dev/skops/security/advisories/GHSA-4v6w-xpmh-gfgp https://github.com/skops-dev/skops/security/advisories/GHSA-m7f4-hrc6-fwg3

Frequently Asked Questions

What is CVE-2025-54413? +

skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below contain an inconsistency in MethodNode, which can be exploited to access unexpected object fields through dot notation. This can be used to achieve arbitrary code execution at load time. While this issue may seem similar to GHSA-m7f4-hrc6-fwg3, it is actually more severe, as it relies on fewer assumptions about trusted types. This is fixed in version 12.0.0.

How do I check if I'm vulnerable to CVE-2025-54413? +

You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2025-54412

skops is a Python library which helps users share and ship their scikit-learn based models. Versions 0.11.0 and below contain …

CVE-2025-30510 9.8

An attacker can upload an arbitrary file instead of a plant image.

CVE-2025-31951 8.8

HCL BigFix RunBookAI is affected by a Unvalidated Command Input / Potential Command Smuggling vulnerability. A flaw in a component's …

CVE-2025-65960 6.6

Contao is an Open Source CMS. From version 4.0.0 to before 4.13.57, before 5.3.42, and before 5.6.5, back end users …

CVE-2024-4769 5.9

When importing resources using Web Workers, error messages would distinguish the difference between `application/javascript` responses and non-script responses. This could …

CVE-2025-47939 5.4

TYPO3 is an open source, PHP based web content management system. By design, the file management module in TYPO3’s backend …