{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-11816/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-11T15:41:29.515Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-11816","@id":"https://www.cve.org/CVERecord?id=CVE-2026-11816","description":"Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities located in `keras/src/utils/file_utils.py`. The functions `filter_safe_tarinfos()` and `filter_safe_zipinfos()` validate archive member paths against the process current working directory (CWD) instead of the actual extraction destination. When the process runs with CWD set to `/`, which is common in Docker containers, CI/CD runners, and Jupyter environments, the validation boundary become"},"products":[{"@id":"cpe:2.3:a:keras-team:keras-team\\/keras:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:keras-team:keras-team\\/keras:*:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 3.14.0.","timestamp":"2026-06-11T15:41:29.515Z"}]}