Malicious Hugging Face Models Could Trigger Remote Code Execution

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks.
VentureBeat

Hugging Face launches popular Transformers NLP library for TensorFlow

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Maker of the popular PyTorch-Transformers model library, Hugging Face ...
Hosted on MSN

Popular Python libraries used in Hugging Face models subject to poisoned metadata attack

Vulnerabilities in popular AI and ML Python libraries used in Hugging Face models with tens of millions of downloads allow remote attackers to hide malicious code in metadata. The code then executes ...
SiliconANGLE

Critical Hugging Face Transformers flaw ran attacker code on a routine model load

Pluto Security Inc. today disclosed a critical remote code execution vulnerability in Hugging Face Inc.’s Transformers library that allowed attacker-controlled artificial intelligence models to run ...