Unit 42 researchers identified remote code execution vulnerabilities in open-source AI/ML libraries published by major technology companies including Apple, Salesforce, and NVIDIA. These vulnerabilities affect modern AI/ML formats and libraries, potentially allowing attackers to execute arbitrary code remotely. The discovery highlights security risks in the rapidly expanding AI/ML ecosystem where libraries are widely used across various applications and platforms. Given the popularity and widespread adoption of AI/ML technologies, these vulnerabilities could have significant impact on organizations using affected libraries. The vulnerabilities were found in Python-based AI/ML libraries commonly used in machine learning workflows and applications.