CVE-2026-38950

HIGH

ESA AnomalyMatch < 1.3.1 - Remote Code Execution via Unsafe Model Checkpoint Deserialization

Title source: llm

Description

An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.load() with unrestricted deserialization.

References (3)

Core 3

Core References

https://github.com/esa/AnomalyMatch/pull/9

https://imlabs.info/research/security_advisory_esa_anomaly_match_unsafe_deserialization_cve_2026_38950_ivan_markovic_052026.html

https://github.com/Accenture/AARO-Bugs/blob/master/AARO-CVE-List.md

View Writeup ZIP pw:eip

Scores

CVSS v3 7.8

EPSS 0.0014

EPSS Percentile 4.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-502

Status published

Published Jun 01, 2026

Tracked Since Jun 01, 2026