Skip to content
Threat Feed

Product

Picklescan < 0.0.33

3 briefs RSS
high advisory

CVE-2025-71373: Picklescan Bypass via `operator.methodcaller` Leads to Arbitrary Code Execution

Remote attackers can bypass security checks in `picklescan` versions prior to 0.0.33 by crafting malicious pickle payloads utilizing `operator.methodcaller` function calls, which upon loading by systems relying on `picklescan` for validation, results in arbitrary code execution and system compromise.

picklescan < 0.0.33 vulnerability rce picklescan python deserialization
1t 1c
high advisory

CVE-2025-71372: Picklescan Deserialization Vulnerability (Numpy Gadget)

CVE-2025-71372 describes a critical vulnerability in Picklescan versions prior to 0.0.33, where the tool fails to detect a specific numpy gadget in pickle `__reduce__` methods, allowing attackers to craft malicious pickle files that execute arbitrary Python code when loaded, bypassing safety checks and enabling supply-chain poisoning of shared model files.

Picklescan < 0.0.33 vulnerability deserialization python supply-chain numpy arbitrary-code-execution
2t 1c 2i
high advisory

CVE-2025-71347: Picklescan Bypass Leads to Arbitrary Code Execution via Malicious Pickle Files

A critical vulnerability (CVE-2025-71347) exists in picklescan prior to version 0.0.33, allowing remote attackers to bypass security checks by failing to detect malicious pickle files leveraging the numpy.f2py.crackfortran.param_eval function, leading to arbitrary code execution upon deserialization of untrusted data.

picklescan < 0.0.33 deserialization python arbitrary-code-execution vulnerability cve defense-evasion
2t 1c 2i