Lucene search
K

88 matches found

CVE
CVE
added 9 hours ago3 views

CVE-2025-71359

The CVE concerns the Python package picklescan prior to version 0.0.29, where the vulnerability lies in deserializing pickle payloads that leverage lib2to3.pgen2.grammar.Grammar.loads within the reduce method. This can enable remote code execution during pickle.load() , by crafting pickle files t...

8.1CVSS6.3AI score
Exploits0References2
CVE
CVE
added 9 hours ago7 views

CVE-2025-71353

CVE-2025-71353 affects picklescan prior to 0.0.28. The root cause is that the tool fails to detect malicious pickle payloads that exploit torch._dynamo.guards.GuardBuilder.get within reduce methods. Attackers can craft pickle files with embedded code that evade detection and trigger arbitrary com...

8.1CVSS6.1AI score
Exploits0References2
EUVD
EUVD
added 3 days ago5 views

EUVD-2025-210391

picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle payloads that bypass picklescan detection and execute arbitrary code when loaded via pickle.load...

8.1CVSS6.1AI score0.00499EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/23 12:13 p.m.7 views

EUVD-2026-38437

picklescan before 1.0.4 fails to block at least seven Python standard library modules including uuid, osxsupport, aixsupport, pyrepl.pager, and imaplib exposing eight functions that provide direct arbitrary command execution. Attackers can craft malicious pickle files importing these unblocked...

9.8CVSS6.7AI score0.00757EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/23 12:12 p.m.31 views

CVE-2025-71341 picklescan - Remote Code Execution via Undetected profile.Profile.runctx

picklescan before 0.0.29 fails to detect the profile.Profile.runctx function when analyzing pickle files, allowing attackers to embed undetected malicious code. Remote attackers can craft malicious pickle files using profile.Profile.runctx in the reduce method to achieve remote code execution whe...

8.1CVSS0.00466EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/22 9:4 p.m.4 views

CVE-2025-71339

Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.evallength gadget in pickle reduce methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded by victims who trust Picklescan's safety validation...

8.1CVSS6.2AI score0.00301EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/21 3:13 p.m.3 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the cProfile.runctx function in pickle file reduce methods. An attacker can execute arbitrary code by...

8.1CVSS6.2AI score0.00338EPSS
Exploits1References2
NVD
NVD
added 2026/06/17 5:17 p.m.15 views

CVE-2026-53874

picklescan before 1.0.1 contains an unsafe deserialization vulnerability allowing unauthenticated users to execute arbitrary code by hiding eval calls nested under callable objects via getattr. Attackers can embed malicious code in pickle files that evades detection but executes when the pickle i...

9.8CVSS0.00519EPSS
Exploits0References2
CVE
CVE
added 2026/06/17 3:5 p.m.19 views

CVE-2026-3490

CVE-2026-3490 affects picklescan prior to version 1.0.4, where the blocklist of dangerous functions is bypassed via pkgutil.resolve_name. The underlying issue is an incomplete blocklist that allows indirect REDUCE calls to resolve dangerous functions, enabling remote code execution (e.g., os.syst...

10CVSS5.9AI score0.00623EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/03 8:5 p.m.4 views

Incomplete List of Disallowed Inputs

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs in the unsafeglobals function. An attacker can execute arbitrary commands on the target system by crafting...

10CVSS6AI score
Exploits0References2
Snyk
Snyk
added 2026/02/18 5:45 p.m.4 views

Incomplete List of Disallowed Inputs

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs via the scanpytorch function. An attacker can execute arbitrary code by crafting a malicious payload that...

7.1CVSS6.1AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:19 a.m.9 views

CVE-2025-1944

picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes it to crash when attempting to extract and scan PyTorch model archives. By modifying the filename in the ZIP header while keeping the original filename in the directory listing, an attacker can make PickleScan...

6.5CVSS6.6AI score0.00307EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.17 views

CVE-2025-1889

picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and include a malicious pickle file with a non-standard file extension. Because the malicious pickle file inclusion is not...

9.8CVSS7.1AI score0.00365EPSS
Exploits2References1
Snyk
Snyk
added 2025/12/30 3:24 p.m.3 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the operator.attrgetter function. An attacker can execute arbitrary code by crafting a malicious pickle...

8.4CVSS7.7AI score
Exploits0References3
Snyk
Snyk
added 2025/12/30 3:22 p.m.5 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the operator.methodcaller function. An attacker can execute arbitrary code by crafting a malicious pickle...

8.4CVSS7.7AI score
Exploits0References2
OSV
OSV
added 2025/12/30 3:22 p.m.2 views

GHSA-955R-X9J8-7RHH Picklescan is vulnerable to RCE via missing detection when calling built-in python _operator.methodcaller

Summary Picklescan uses operator.methodcaller, which is a built-in python library function to execute remote pickle files. Details The attack payload executes in the following steps: - First, the attacker crafts the payload by calling to operator.methodcaller function in reduce method - Then when...

9.3CVSS7.7AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/12/30 3:22 p.m.503 views

Picklescan is vulnerable to RCE via missing detection when calling built-in python _operator.methodcaller

Summary Picklescan uses operator.methodcaller, which is a built-in python library function to execute remote pickle files. Details The attack payload executes in the following steps: - First, the attacker crafts the payload by calling to operator.methodcaller function in reduce method - Then when...

7.8AI score
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/12/30 3:20 p.m.5 views

EUVD-2025-205781

Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran.evallength...

6.4AI score
Exploits0References5
Snyk
Snyk
added 2025/12/30 3:20 p.m.3 views

Deserialization of Untrusted Data

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the numpy.f2py.crackfortran.evallength function. An attacker can execute arbitrary code by crafting a...

8.4CVSS6.1AI score
Exploits0References3
OSV
OSV
added 2025/12/29 10:44 p.m.6 views

GHSA-CFFC-MXRF-MHH4 Picklescan is vulnerable to RCE via missing detection when calling numpy.f2py.crackfortran.param_eval

Summary Picklescan uses numpy.f2py.crackfortran.parameval, which is a function in numpy to execute remote pickle files. Details The attack payload executes in the following steps: - First, the attacker crafts the payload by calling the numpy.f2py.crackfortran.parameval function via reduce method....

7.7AI score
Exploits0References5
Rows per page
Query Builder