Export limit exceeded: 362527 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (42 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-71352 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-07-01 8.1 High
picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle file reduce methods, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files with trace.Trace.runctx payloads that bypass picklescan detection and execute code upon pickle.load() invocation.
CVE-2025-71350 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-07-01 8.1 High
picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in reduce methods. Attackers can embed undetected code in pickle files that executes remote commands when loaded by victims.
CVE-2025-71355 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-07-01 N/A
Picklescan before 0.0.25 fails to detect unsafe global functions in the Numpy library, allowing attackers to bypass static analysis and execute arbitrary code during deserialization. Attackers can craft malicious pickle files using numpy.testing._private.utils.runstring within the reduce method to import dangerous libraries like os and execute arbitrary OS commands when the pickle file is loaded.
CVE-2025-71374 1 Mmaitre314 1 Picklescan 2026-06-30 8.1 High
picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle reduce methods, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files that bypass picklescan detection and achieve code execution upon deserialization.
CVE-2025-71371 1 Mmaitre314 1 Picklescan 2026-06-30 8.1 High
picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in reduce methods. Attackers can craft pickle payloads that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().
CVE-2025-71368 1 Mmaitre314 1 Picklescan 2026-06-30 8.1 High
picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files embedding doctest.debug_script calls that bypass picklescan detection and execute arbitrary commands upon pickle.load invocation.
CVE-2025-71363 1 Mmaitre314 1 Picklescan 2026-06-30 8.1 High
picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files with cProfile.run payloads that bypass picklescan detection and achieve code execution upon deserialization.
CVE-2025-71349 1 Mmaitre314 1 Picklescan 2026-06-30 8.1 High
picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, allowing attackers to embed undetected malicious code. Remote attackers can craft malicious pickle files using trace.Trace.run in the reduce method to achieve arbitrary code execution when pickle.load processes the file.
CVE-2025-71340 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-06-26 8.1 High
picklescan through 0.0.26 fails to detect malicious pickle files that invoke idlelib.pyshell.ModifiedInterpreter.runcode in __reduce__ methods. Attackers can embed undetected code in pickle files that executes arbitrary commands when the file is loaded via pickle.load(), enabling supply chain attacks on PyTorch models and saved Python objects. This is fixed in version 0.0.30.
CVE-2026-56304 1 Mmaitre314 1 Picklescan 2026-06-24 6.5 Medium
picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create arbitrary zero-byte files via logging.FileHandler class instantiation. Attackers can exploit this by crafting malicious pickle payloads to bypass RCE blocklists and create lock files or other filesystem artifacts, potentially causing denial of service or application disruption.
CVE-2025-71361 1 Mmaitre314 1 Picklescan 2026-06-24 8.1 High
picklescan before 0.0.29 fails to detect malicious idlelib.calltip.Calltip.fetch_tip calls in pickle files, allowing remote code execution. Attackers can embed undetected payloads in pickle files that execute arbitrary code when loaded via pickle.load().
CVE-2025-71354 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-06-24 8.1 High
picklescan before 0.0.29 fails to detect malicious pickle files that exploit idlelib.debugobj.ObjectTreeItem.SetText function in reduce methods. Attackers can craft pickle files with embedded code that bypasses picklescan detection and executes arbitrary commands when pickle.load() is called.
CVE-2025-71344 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-06-23 8.1 High
picklescan before 0.0.30 (affected versions 0.0.26 and earlier) fails to detect the ensurepip._run_pip built-in function when scanning pickle files, allowing attackers to execute arbitrary code. Malicious pickle files embedding ensurepip._run_pip calls in __reduce__ methods bypass picklescan detection and achieve remote code execution upon pickle.load() invocation.
CVE-2025-71376 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-06-23 8.1 High
picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.autocomplete.AutoComplete.fetch_completions in reduce methods. Attackers can embed undetected code in pickle files that executes arbitrary commands when loaded by victims.
CVE-2025-71341 2 Mmaitre314, Picklescan 2 Picklescan, Picklescan 2026-06-23 8.1 High
picklescan before 0.0.29 fails to detect the profile.Profile.runctx function when analyzing pickle files, allowing attackers to embed undetected malicious code. Remote attackers can craft malicious pickle files using profile.Profile.runctx in the reduce method to achieve remote code execution when the pickle file is loaded.
CVE-2025-71339 1 Mmaitre314 1 Picklescan 2026-06-23 8.1 High
Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran._eval_length gadget in pickle __reduce__ methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded by victims who trust Picklescan's safety validation.
CVE-2025-71365 1 Mmaitre314 1 Picklescan 2026-06-23 8.1 High
picklescan before 0.0.33 fails to detect malicious pickle files that invoke numpy.f2py.crackfortran.myeval function through the reduce method. Attackers can craft malicious pickle files embedding arbitrary code that evades picklescan detection and executes remote code when loaded.
CVE-2025-71370 1 Mmaitre314 1 Picklescan 2026-06-23 8.1 High
picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().
CVE-2026-56315 1 Mmaitre314 1 Picklescan 2026-06-23 9.8 Critical
picklescan before 1.0.4 fails to block at least seven Python standard library modules (including uuid, _osx_support, _aix_support, _pyrepl.pager, and imaplib) exposing eight functions that provide direct arbitrary command execution. Attackers can craft malicious pickle files importing these unblocked modules to achieve remote code execution while bypassing picklescan's safety validation entirely.
CVE-2025-71358 1 Mmaitre314 1 Picklescan 2026-06-23 8.1 High
picklescan before 0.0.29 fails to detect malicious pickle files that exploit idlelib.autocomplete.AutoComplete.get_entity function in reduce methods. Attackers can embed undetected code in pickle files that executes arbitrary commands when loaded by victims using pickle.load().