Flaw in AI Libraries Exposes Models to Remote Code Execution
Vulnerabilities in three AI libraries (NeMo, Uni2TS, FlexTok) from Apple, Salesforce, and Nvidia allow remote code execution via compromised model files loaded through Hugging Face.
Edward Kiledjian
@ekiledjian