CVE-2025-2000
Published: 14 March 2025
Description
Adversaries may abuse Python commands and scripts for execution.
Security Summary
CVE-2025-2000 is a critical deserialization vulnerability (CWE-502) affecting the Qiskit quantum computing framework, specifically versions 0.18.0 through 1.4.1. The flaw resides in the `qiskit.qpy.load()` function, which processes QPY binary files in formats less than version 13. A maliciously crafted QPY file can embed arbitrary Python code that executes during deserialization without requiring privilege escalation. The vulnerability carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) and was published on 2025-03-14.
The attack scenario involves remote attackers with no privileges or user interaction, who can supply a specially constructed QPY payload to any Python process invoking the vulnerable `qiskit.qpy.load()` function. Successful exploitation allows execution of arbitrary Python code embedded in the file, enabling full compromise of the affected process with high impact on confidentiality, integrity, and availability.
Mitigation details are available in the IBM support advisory at https://www.ibm.com/support/pages/node/7185949.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The deserialization flaw in qiskit.qpy.load() allows remote attackers to supply a malicious QPY file that executes arbitrary Python code during processing (no auth or interaction required), directly enabling T1190 for exploiting a public-facing or network-accessible application and T1059.006 for Python interpreter execution.