PYSEC-2025-68

A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6. This issue affects the function cloudpickle.loads of the file /tools/addtool of the component Pickle Handler. The manipulation leads to deserialization. The exploit has been disclosed to the public and may ...

CVE-2025-6279

CVE-2025-6279 affects Upsonic up to 0.55.6. The vulnerability resides in the Pickle Handler’s function cloudpickle.loads (file /tools/add_tool) and enables deserialization due to the underlying root cause described in the coordinated disclosure. Exploit information is publicly disclosed according...

Upsonic 代码问题漏洞

Upsonic is an AI agent framework open-sourced by Upsonic. A code issue vulnerability exists in Upsonic 0.55.6 and earlier versions, which stems from deserialization of the file /tools/addtool function cloudpickle.loads in the component Pickle Handler...

CVE-2024-0960

A vulnerability was found in flink-extended ai-flow 0.3.1. It has been declared as critical. Affected by this vulnerability is the function cloudpickle.loads of the file \aiflow\cli\commands\workflowcommand.py. The manipulation leads to deserialization. The attack can be launched remotely. The...

Deserialization of Untrusted Data

Overview horovod is a Distributed training framework for TensorFlow, Keras, PyTorch, and Apache MXNet. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to improper handling of base64-encoded data in the ElasticRendezvousHandler, a subclass of KVStoreHandle...

CVE-2024-9053

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer RPC server entrypoints. The core functionality runserverloop calls the function makehandlercoro, which directly uses cloudpickle.loads on received messages without any sanitization. This can result in remote code...

CVE-2024-9053

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer RPC server entrypoints. The core functionality runserverloop calls the function makehandlercoro, which directly uses cloudpickle.loads on received messages without any sanitization. This can result in remote code...

PYSEC-2025-222

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer RPC server entrypoints. The core functionality runserverloop calls the function makehandlercoro, which directly uses cloudpickle.loads on received messages without any sanitization. This can result in remote code...

PYSEC-2025-222

vllm-project vllm version 0.6.0 contains a vulnerability in the AsyncEngineRPCServer RPC server entrypoints. The core functionality runserverloop calls the function makehandlercoro, which directly uses cloudpickle.loads on received messages without any sanitization. This can result in remote code...

CVE-2024-9053

CVE-2024-9053 affects vllm-project/vllm 0.6.0, specifically the AsyncEngineRPCServer entrypoints. The run_server_loop() path calls _make_handler_coro() which uses cloudpickle.loads() on received messages without sanitization, enabling remote code execution via deserialization of untrusted data (n...

CVE-2024-28424

zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the load function at /materializers/cloudpicklematerializer.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2024-28424

zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the load function at /materializers/cloudpicklematerializer.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2024-28424

zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the load function at /materializers/cloudpicklematerializer.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...

ZenML Security Vulnerability

ZenML is an extensible open source MLOps framework for creating portable, production-ready machine learning pipelines. A security vulnerability exists in ZenML version v0.55.4, which stems from an arbitrary file upload vulnerability contained in the load function in...

CVE-2024-0960 flink-extended ai-flow workflow_command.py cloudpickle.loads deserialization

A vulnerability was found in flink-extended ai-flow 0.3.1. It has been declared as critical. Affected by this vulnerability is the function cloudpickle.loads of the file \aiflow\cli\commands\workflowcommand.py. The manipulation leads to deserialization. The attack can be launched remotely. The...

StanfordVL GibsonEnv Code Issue Vulnerability

StanfordVL GibsonEnv is a virtual environment simulator from StanfordVL Labs. A code issue vulnerability exists in StanfordVL GibsonEnv version 0.3.1, which stems from a security issue in the cloudpickle.load function in gibsonutilspposgdfuse.py, leading to deserialization...

PT-2024-15939 · Unknown · Stanfordvl Gibsonenv +1

Name of the Vulnerable Software and Affected Versions: StanfordVL GibsonEnv version 0.3.1 Description: A critical issue has been found, affecting the cloudpickle.load function of the file gibsonutilspposgd fuse.py. This issue leads to deserialization and can be exploited remotely. The complexity ...

PT-2024-15940 · Unknown · Flink-Extended Ai-Flow +1

Name of the Vulnerable Software and Affected Versions: flink-extended ai-flow version 0.3.1 Description: A critical issue has been found, affecting the function cloudpickle.loads of the file ai flowclicommandsworkflow command.py. This issue leads to deserialization and can be exploited remotely...

ai-flow Code Issue Vulnerability

ai-flow is an open source framework for connecting big data and artificial intelligence. A code issue vulnerability exists in flink-extended ai-flow version 0.3.1, which stems from a security issue in the function cloudpickle.loads in aiflowclicommandsworkflowcommand.py, leading to deserializatio...