Eresus research, advisory, and security news
We collect writing, advisories, and current-event analysis around AI security, the MCP ecosystem, application security, and real attack chaining here.
Latest Posts
TorchScript Model Arbitrary Code Execution Detected at Model Load Time
Critical security vulnerability detailing explicit Remote Code Execution (RCE) occurrences triggered dynamically during TorchScript model initialization...
Python Pickle Arbitrary Code Execution Detected
Discover how Python's built-in Pickle serialization module enables severe Arbitrary Code Execution (ACE) vulnerabilities within machine learning...
ONNX Model Contains Embedded File Threats
AI Models can distribute additional malicious binaries hidden inside model file payloads. Eresus Sentinel detects these backdoor packages masked within...
LiteRT FlatBuffer Metadata RCE Exploits
Identifies critical threats leveraging the custom metadata extension fields within LiteRT (.tflite) FlatBuffer archives to force path traversals and...
Keras Model Custom Layer Detected at Model Run Time
Highlights specific Keras deployments dynamically compiling complex custom layers entirely operating outside strict deserialization bounds. Poses...
GGUF Model Template Containing Arbitrary Code Execution Detected
GGUF formats using raw Jinja templates without sandboxing are susceptible to arbitrary code execution attacks. Always use isolated environments for...
Transitive Model Threat Detected with Unsafe Model Dependency
Highlighting critical interconnected runtime threats targeting definitively unsafe Artificial Intelligence components distinctly imported during ML...
Transitive Model Threat Detected with A Suspicious Model Dependency
Discover why transitive model threats and suspicious artificial intelligence dependencies put your AI supply chain at risk. Learn how Eresus Sentinel...
TensorFlow SavedModel Contains Suspicious Operator Execution at Model Run Time
Highlights complex execution parameters inside TensorFlow evaluations avoiding explicit malware categorization yet successfully performing extremely...