Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/28 3:18 p.m.12 views

CVE-2025-1716

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

9.8CVSS6.8AI score0.01592EPSS
Exploits2References1
NVD
NVD
added 2025/02/26 3:15 p.m.13 views

CVE-2025-1716

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

9.8CVSS0.01592EPSS
Exploits2References3
CVE
CVE
added 2025/02/26 2:51 p.m.93 views

CVE-2025-1716

CVE-2025-1716 affects picklescan later than 0.0.21; the root cause is unsafe deserialization via Python pickle, specifically calling pip.main() to install a malicious PyPI package, enabling RCE when unpickling. Exploitation could bypass static analysis, as demonstrated by the associated POC and m...

9.8CVSS6.5AI score0.01592EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2025/02/26 2:51 p.m.20 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS6.7AI score0.01592EPSS
Exploits4References7
Vulnrichment
Vulnrichment
added 2025/02/26 2:51 p.m.14 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS6.4AI score0.01592EPSS
Exploits2References3
Cvelist
Cvelist
added 2025/02/26 2:51 p.m.20 views

CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'

picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...

5.3CVSS0.01592EPSS
Exploits2References3
Rows per page
Query Builder