Lucene search
+L

85 matches found

cvelist
cvelist
added 2026/07/04 1:23 a.m.39 views

CVE-2025-71366 picklescan - Arbitrary Code Execution via torch.utils.bottleneck.__main__.run_cprofile

picklescan before 0.0.28 fails to detect malicious torch.utils.bottleneck.main.runcprofile function calls in pickle files, allowing attackers to bypass safety checks. Remote attackers can embed undetected code in pickle files to achieve arbitrary code execution when victims load the files...

8.1CVSS0.00445EPSS
Exploits0References2
euvd
euvd
added 2026/07/01 12:34 a.m.8 views

EUVD-2025-210390

picklescan before 0.0.30 fails to detect the doctest.debugscript function when analyzing pickle files, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files embedding doctest.debugscript calls that bypass picklescan detection and execute arbitrary command...

8.1CVSS6.1AI score0.00769EPSS
Exploits0References3
cve
cve
added 2026/06/30 10:8 p.m.16 views

CVE-2025-71355

CVE-2025-71355 : Picklescan prior to 0.0.25 fails to detect unsafe global functions in the Numpy library, enabling an attacker to bypass static analysis and execute arbitrary code during deserialization. Attackers can craft malicious pickle files using numpy.testing._private.utils.runstring withi...

7.6CVSS6.1AI score0.00552EPSS
Exploits0References2
osv
osv
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-547 Deserialization of untrusted data in synthcity

A vulnerability, which was classified as critical, has been found in vanderSchaar LAB synthcity 0.2.9. Affected by this issue is the function loadfromfile of the component PKL File Handler. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been...

9.8CVSS6.1AI score0.00678EPSS
Exploits0References8
nvd
nvd
added 2026/06/23 1:16 p.m.14 views

CVE-2025-71370

picklescan before 0.0.28 fails to detect malicious torch.jit.unsupportedtensorops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load...

8.1CVSS0.00379EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/22 9:4 p.m.23 views

CVE-2025-71344 picklescan - Arbitrary Code Execution via Undetected ensurepip._run_pip Function

picklescan before 0.0.30 affected versions 0.0.26 and earlier fails to detect the ensurepip.runpip built-in function when scanning pickle files, allowing attackers to execute arbitrary code. Malicious pickle files embedding ensurepip.runpip calls in reduce methods bypass picklescan detection and...

8.1CVSS0.00367EPSS
Exploits0References2
nvd
nvd
added 2026/06/20 4:17 p.m.16 views

CVE-2026-56304

picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create arbitrary zero-byte files via logging.FileHandler class instantiation. Attackers can exploit this by crafting malicious pickle payloads to bypass RCE blocklists and create...

6.9CVSS0.00288EPSS
Exploits1References2
osv
osv
added 2026/05/12 6:30 p.m.7 views

GHSA-WCR3-GM9F-F87Q Ludwig framework is vulnerable to insecure deserialization through its predict() method.

The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization CWE-502 through its predict method. When a user provides a dataset file path to the predict method, the framework automatically determines the file format. If the file is a pickle .pkl file, it is loaded using...

9.8CVSS6.3AI score0.006EPSS
Exploits0References3
nvd
nvd
added 2026/05/12 6:16 p.m.11 views

CVE-2026-31237

The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization CWE-502 through its predict method. When a user provides a dataset file path to the predict method, the framework automatically determines the file format. If the file is a pickle .pkl file, it is loaded using...

9.8CVSS0.006EPSS
Exploits0References2
snyk
snyk
added 2026/04/07 8:17 p.m.3 views

Deserialization of Untrusted Data

Overview monai is an AI Toolkit for Healthcare Imaging Affected versions of this package are vulnerable to Deserialization of Untrusted Data in the algofrompickle function in monai/auto3dseg/utils.py. An attacker can execute arbitrary code by providing a crafted pickle file that is deserialized...

8.8CVSS6.2AI score
Exploits0References2
redhatcve
redhatcve
added 2026/03/26 3:18 p.m.4 views

CVE-2026-3989

SGLangs replayrequestdump.py contains an insecure pickle.load without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script...

7.8CVSS7.1AI score0.00334EPSS
Exploits0References1
github
github
added 2026/03/12 12:30 p.m.10 views

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization

SGLangs replayrequestdump.py contains an insecure pickle.load without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script...

7.8CVSS5.9AI score0.00334EPSS
Exploits0References6Affected Software1
nvd
nvd
added 2026/03/12 12:15 p.m.4 views

CVE-2026-3989

SGLangs replayrequestdump.py contains an insecure pickle.load without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script...

7.8CVSS0.00334EPSS
Exploits0References4
cvelist
cvelist
added 2026/03/12 11:37 a.m.25 views

CVE-2026-3989 CVE-2026-3989

SGLangs replayrequestdump.py contains an insecure pickle.load without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script...

0.00334EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/03/12 11:37 a.m.1 views

CVE-2026-3989

SGLangs replayrequestdump.py contains an insecure pickle.load without validation and proper deserialization. An attacker can take advantage of this by providing a malicious .pkl file, which will execute the attackers code on the device running the script...

7.8CVSS5.9AI score0.00334EPSS
Exploits0References5Affected Software1
cve
cve
added 2026/03/12 11:37 a.m.26 views

CVE-2026-3989

CVE-2026-3989 affects SGLangs replay_request_dump.py, where an insecure pickle.load() is used without validation. The underlying issue is improper deserialization, enabling execution of attacker-supplied code when a malicious .pkl file is provided to the script. The CVE’s metrics indicate a high-...

7.8CVSS5.9AI score0.00334EPSS
Exploits0References4
github
github
added 2026/02/03 6:30 p.m.10 views

Boltz contains an insecure deserialization vulnerability in its molecule loading functionality

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References4Affected Software1
cve
cve
added 2026/02/03 12:0 a.m.15 views

CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation, allowing an attacker who can place a malicious pickle file in a reachable location to trigger arbitrary...

6.5CVSS8.1AI score0.00223EPSS
Exploits0References2
cvelist
cvelist
added 2026/02/03 12:0 a.m.28 views

CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

0.00223EPSS
Exploits0References2
osv
osv
added 2026/02/03 12:0 a.m.4 views

CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS6.4AI score0.00223EPSS
Exploits0References4
Rows per page
Query Builder