CVE-2025-71345
The CVE describes a vulnerability in the Python package picklescan where versions prior to 0.0.30 fail to detect malicious pickle files that invoke the function torch.utils.bottleneck.main .run_autograd_prof . This can allow attackers to embed code in pickle data that executes during deserializat...