EUVD-2025-16266

Malicious code in bioql PyPI...

EUVD-2025-16265

Malicious code in bioql PyPI...

Improper Authorization

pypickle is vulnerable to Improper Authorization. The vulnerability is due to insufficient access control in the Save function of pypickle/pypickle.py, allowing local attackers to perform unauthorized actions...

kolibri-light (>=0.1.1 <=0.3.2) potentially affected by CVE-2025-5175 via pypickle (=1.1.0)

pypickle PYPI version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on pypickle and may be impacted: - kolibri-light =0.1.1, =0.3.2 Source cves: CVE-2025-5175 Source advisory: OSV:GHSA-QPXX-2CWH-R5VH...

GHSA-5QWJ-342R-H886 pypickle unsafe deserialization vulnerability

A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic. Affected by this issue is the function load of the file pypickle/pypickle.py. The manipulation leads to deserialization. Local access is required to approach this attack. The exploit has been disclosed to th...

PT-2025-22917 · Pypi · Pypickle

Name of the Vulnerable Software and Affected Versions: erdogant pypickle versions 1.1.5 and earlier Description: A critical issue affects the Save function of the file pypickle/pypickle.py, leading to improper authorization. The manipulation requires a local attack, and the exploit has been...