CVE-2025-2000

CRITICAL

IBM Qiskit < 1.4.2 - Insecure Deserialization

Title source: rule

Description

A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege escalation when deserialising QPY formats < 13. A python process calling Qiskit 0.18.0 through 1.4.1's `qiskit.qpy.load()` function could potentially execute any arbitrary Python code embedded in the correct place in the binary file as part of specially constructed payload.

References (1)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7185949

Scores

CVSS v3 9.8

EPSS 0.0016

EPSS Percentile 36.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-502

Status published

Affected Products (3)

ibm/qiskit < 1.4.2

pypi/qiskit-terra PyPI

pypi/qiskit < 1.4.2PyPI

Timeline

Published Mar 14, 2025

Tracked Since Feb 18, 2026