Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/02/28 3:18 p.m.13 views

CVE-2025-1716

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

9.8CVSS6.8AI score0.01592EPSS
Exploits2References1
nvd
nvd
added 2025/02/26 3:15 p.m.13 views

CVE-2025-1716

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

9.8CVSS0.01592EPSS
Exploits2References3
cvelist
cvelist
added 2025/02/26 2:51 p.m.20 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS0.01592EPSS
Exploits2References3
cve
cve
added 2025/02/26 2:51 p.m.93 views

CVE-2025-1716

CVE-2025-1716 affects picklescan later than 0.0.21; the root cause is unsafe deserialization via Python pickle, specifically calling pip.main() to install a malicious PyPI package, enabling RCE when unpickling. Exploitation could bypass static analysis, as demonstrated by the associated POC and m...

9.8CVSS6.5AI score0.01592EPSS
Exploits2References3Affected Software1
vulnrichment
vulnrichment
added 2025/02/26 2:51 p.m.14 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS6.4AI score0.01592EPSS
Exploits2References3
osv
osv
added 2025/02/26 2:51 p.m.20 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS6.7AI score0.01592EPSS
Exploits4References7
Rows per page
Query Builder