CVE-2025-71353
CVE-2025-71353 affects picklescan prior to 0.0.28. The root cause is that the tool fails to detect malicious pickle payloads that exploit torch._dynamo.guards.GuardBuilder.get within reduce methods. Attackers can craft pickle files with embedded code that evade detection and trigger arbitrary com...