5 matches found
modelscan-bypass-poc
⚠️ ModelScan Bypass PoC — Security Research WARNING: This...
modelscan-bypass-poc
⚠️ ModelScan Bypass PoC — Security Research WARNING: This...
GHSA-9GVJ-PP9X-GCFR Picklescan has pickle parsing logic flaw that leads to malicious pickle file bypass
Details There's a parsing logic error in picklescan and modelscan while trying to deal with opcode STACKGLOBAL. Function listglobals when handling STACKGLOBAL at position n, it is expected to track two arguments but in wrong range. The loop only consider the range from 1 to n-1 but forgets to...
Picklescan has pickle parsing logic flaw that leads to malicious pickle file bypass
Details There's a parsing logic error in picklescan and modelscan while trying to deal with opcode STACKGLOBAL. Function listglobals when handling STACKGLOBAL at position n, it is expected to track two arguments but in wrong range. The loop only consider the range from 1 to n-1 but forgets to...
PT-2025-34324 · Pypi · Picklescan
Details There's a parsing logic error in picklescan and modelscan while trying to deal with opcode STACK GLOBAL. Function list globals when handling STACK GLOBAL at position n, it is expected to track two arguments but in wrong range. The loop only consider the range from 1 to n-1 but forgets to...