CVE-2025-2000CRITICAL 9.8EPSS p49.8%

CVE-2025-2000CVE-2025-2000

Description

A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege escalation when deserialising QPY formats < 13. A python process calling Qiskit 0.18.0 through 1.4.1's `qiskit.qpy.load()` function could potentially execute any arbitrary Python code embedded in the correct place in the binary file as part of specially constructed payload.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.74% probability of exploitation · percentile 49.8% · 2026-06-19T12:03:05Z
Published2025-03-14
Last modified2025-08-18

Underlying weaknesses· 1

CWE-502

References

  1. https://www.ibm.com/support/pages/node/7185949

1

TypeTargetConfidenceTier
WeaknessDeserialization of Untrusted Datacwe-5020%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-1403
CVE
CVE-2025-1550
CVE
CVE-2025-62515
CVE
CVE-2025-61622
CVE
CVE-2025-63675
CVE
CVE-2025-33210
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.