441 matches found
python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
Summary A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which the attacker previously gained access to the message queue that the servers use...
EUVD-2016-3162
Malware in sbrugna...
EUVD-2010-4407
Malware in sbrugna...
EUVD-2017-18895
Malware in sbrugna...
EUVD-2008-7063
Malware in sbrugna...
EUVD-2021-21739
Malware in sbrugna...
EUVD-2008-1324
Malware in sbrugna...
EUVD-2014-4542
Malware in sbrugna...
DEBIAN-CVE-2025-61765
python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which...
UBUNTU-CVE-2025-61765
python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which...
CVE-2025-61765 python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which...
CVE-2025-61765 python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which...
CVE-2025-61765
CVE-2025-61765 affects the Python Socket.IO implementation (python-socketio) used for real-time client/server communications. The root cause is unsafe deserialization of messages via Python’s pickle.loads() when inter-server messaging uses a backend message queue (e.g., Redis). In multi-server de...
CVE-2025-61765 python-socketio vulnerable to arbitrary Python code execution (RCE) through malicious pickle deserialization in certain multi-server deployments
python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution vulnerability in python-socketio versions prior to 5.14.0 allows attackers to execute arbitrary Python code through malicious pickle deserialization in multi-server deployments on which...
CVE-2025-58581 Information Disclosure Through Stacktrace-/MQTT/Config/changeAll
When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other internal information. An attacker can thus obtain information about the technology used and the structure of the application...
PT-2025-40909
Name of the Vulnerable Software and Affected Versions python-socketio versions prior to 5.14.0 Description python-socketio is a Python implementation of the Socket.IO realtime client and server. A remote code execution issue in python-socketio allows attackers to execute arbitrary Python code...
EUVD-2025-5213
Malicious code in bioql PyPI...
EUVD-2023-26547
Malicious code in bioql PyPI...
EUVD-2022-43262
Malicious code in bioql PyPI...
EUVD-2024-54380
Malicious code in bioql PyPI...