CVE-2025-2000

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-2000

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-2000.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-2000

Aliases

GHSA-6m2c-76ff-6vrf

Published

2025-03-14T13:15:40Z

Modified

2025-10-16T06:20:50.222832Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege escalation when deserialising QPY formats < 13. A python process calling Qiskit 0.18.0 through 1.4.1's qiskit.qpy.load() function could potentially execute any arbitrary Python code embedded in the correct place in the binary file as part of specially constructed payload.

References

https://www.ibm.com/support/pages/node/7185949

Affected packages

Git / github.com/qiskit/qiskit

Affected ranges

Type: GIT
Repo: https://github.com/qiskit/qiskit
Events: Introduced

5ca967557b21828c0760763b7f0c5870e5f032d9

Fixed

3da3d5ad37dd0b255ab83582d43ff7ee33fa9edf

Affected versions

0.*

0.18.0

0.19.0

0.20.0

0.21.0rc1

0.22.0rc1

0.23.0rc1

0.24.0rc1

0.25.0rc1

0.45.0rc1

1.*

1.0.0b1

1.0.0rc1

1.1.0rc1

1.3.0

1.3.0b1

1.3.0rc1

1.3.0rc2

1.3.1

1.3.2

1.3.3

1.4.0

1.4.1