Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.18 views

CVE-2025-1889

picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and include a malicious pickle file with a non-standard file extension. Because the malicious pickle file inclusion is not...

9.8CVSS7.1AI score0.00365EPSS
Exploits2References1
Circl
Circl
added 2025/03/03 7:59 p.m.9 views

CVE-2025-1889

creationtimestamp| type| source ---|---|--- 2025-03-03 19:59:46+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-769v-p64c-89pr 2025-03-03 20:49:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljit7b7tem2b 2025-03-03 21:24:39+00:00| seen|...

9.8CVSS7.5AI score0.00365EPSS
Exploits2References4
NVD
NVD
added 2025/03/03 7:15 p.m.15 views

CVE-2025-1889

picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and include a malicious pickle file with a non-standard file extension. Because the malicious pickle file inclusion is not...

9.8CVSS0.00365EPSS
Exploits2References2
Cvelist
Cvelist
added 2025/03/03 6:38 p.m.22 views

CVE-2025-1889 picklescan - Security scanning bypass via non-standard file extensions

picklescan before 0.0.22 only considers standard pickle file extensions in the scope for its vulnerability scan. An attacker could craft a malicious model that uses Pickle and include a malicious pickle file with a non-standard file extension. Because the malicious pickle file inclusion is not...

5.3CVSS0.00365EPSS
Exploits2References2
Rows per page
Query Builder