4 matches found
CVE-2025-5174
creationtimestamp| type| source ---|---|--- 2025-05-26 07:46:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17534 2025-05-26 15:07:31+00:00| seen| https://bsky.app/profile/cecallihelper.bsky.social/post/3lq3hbcard22y...
kolibri-light (>=0.1.1 <=0.3.2) potentially affected by CVE-2025-5174 via pypickle (=1.1.0)
pypickle PYPI version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on pypickle and may be impacted: - kolibri-light =0.1.1, =0.3.2 Source cves: CVE-2025-5174 Source advisory: OSV:PYSEC-2025-45...
CVE-2025-5174 erdogant pypickle pypickle.py load deserialization
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic. Affected by this issue is the function load of the file pypickle/pypickle.py. The manipulation leads to deserialization. Local access is required to approach this attack. The exploit has been disclosed to th...
CVE-2025-5174
CVE-2025-5174 affects the erdogant pypickle package up to version 1.1.5. The vulnerability is in the load function of pypickle/pypickle.py, enabling deserialization with local access. The exploit has been disclosed, and upgrading to version 2.0.0 is reported to address the issue (patch 14b4cae704...