A vulnerability, which was classified as critical , was found in keras-team keras up to 3.13.x . Impacted is the function filter_safe_tarinfos of the file keras/src/utils/file_utils.py of the component Archive Extraction Handler . The manipulation results in path traversal. This vulnerability is identified as CVE-2026-11816 . The attack can be executed remotely. There is not any exploit available. You should upgrade the affected component.