TheRegister's platform is a leading technology news website, offering insights into IT industry news, hardware reviews, and software updates. Through articles, analysis, and opinion pieces, TheRegister offers insights into cybersecurity threats, technology trends, and industry developments. Readers can stay updated with the latest news and analysis from the world of technology and IT business.

The Register

Security researchers discovered vulnerabilities in popular Python AI/ML libraries (NeMo, Uni2TS, FlexTok) from Nvidia, Salesforce, and Apple that allow remote code execution through poisoned metadata. The flaws stem from unsafe use of Hydra's instantiate() function, which can execute arbitrary code when loading model configurations. Attackers could hide malicious code in metadata that executes automatically when files are loaded. The libraries, used in Hugging Face models with millions of downloads, have been patched with CVEs issued. Meta updated Hydra documentation with security warnings, though no in-the-wild exploitation has been observed.

Python libraries in AI/ML models can be poisoned w metadata