6 matches found
CVE-2025-46417
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.getservercertificate can exfiltrate data via DNS after deserialization...
CVE-2025-46417
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.getservercertificate can exfiltrate data via DNS after deserialization...
CVE-2025-46417
CVE-2025-46417 affects Picklescan up to version 0.0.25, where unsafe globals exclude ssl, allowing ssl.get_server_certificate to exfiltrate data via DNS after deserialization. Exploitation details are not provided in the connected documents. CVSS vectors indicate high impact under NVD (7.5) and m...
CVE-2025-46417
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.getservercertificate can exfiltrate data via DNS after deserialization...
CVE-2025-46417
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.getservercertificate can exfiltrate data via DNS after deserialization...
CVE-2025-46417
creationtimestamp| type| source ---|---|--- 2025-04-07 18:52:47+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-93mv-x874-956g 2025-04-24 01:04:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13169 2025-04-24 04:42:06+00:00| seen|...