#ml-security
#ml-security

[ follow ]

Zero Day Initiative - CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

Avoid pickle-based deserialization and enforce secure model-loading: use weights_only, restrict classes, sandbox loading, sign and audit models, and prefer safer formats.

[ Load more ]

#ml-security#ml-security

Zero Day Initiative - CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

#ml-security
#ml-security