CVE-2026-38950
HIGH NVDCVSS Score
7.8
Severity
HIGH
Source
NVD
Published
Jun 01, 2026
Description
An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.load() with unrestricted deserialization.