Skip to content
Threat Feed

Vendor

Picklescan

11 briefs RSS
high advisory

CVE-2025-71373: Picklescan Bypass via `operator.methodcaller` Leads to Arbitrary Code Execution

Remote attackers can bypass security checks in `picklescan` versions prior to 0.0.33 by crafting malicious pickle payloads utilizing `operator.methodcaller` function calls, which upon loading by systems relying on `picklescan` for validation, results in arbitrary code execution and system compromise.

picklescan < 0.0.33 vulnerability rce picklescan python deserialization
1t 1c
high advisory

CVE-2025-71369: Picklescan Malicious Pickle Detection Bypass Leading to RCE

A critical vulnerability, CVE-2025-71369, in `picklescan` versions prior to 0.0.28 allows remote attackers to bypass safety checks for malicious Python pickle files that utilize specific `torch.utils.data.datapipes` methods, enabling undetected embedded malicious code to execute during deserialization, which results in remote code execution (RCE) on the victim's system.

picklescan < 0.0.28 python deserialization rce vulnerability supply-chain machine-learning
2t 1c
high advisory

CVE-2025-71367: Picklescan Bypass Leading to Arbitrary Code Execution

Picklescan versions prior to 0.0.34 contain a deserialization vulnerability (CVE-2025-71367) that allows remote attackers to bypass security checks by crafting malicious pickle files using `_operator.attrgetter` in reduce methods, leading to arbitrary code execution when `pickle.load()` processes the file.

picklescan < 0.0.34 deserialization vulnerability python pickle rce
2t 1c
high advisory

CVE-2025-71366: Picklescan Deserialization Vulnerability Leads to RCE

A critical deserialization vulnerability (CVE-2025-71366) exists in picklescan versions prior to 0.0.28, allowing remote attackers to bypass safety checks by embedding malicious `torch.utils.bottleneck.__main__.run_cprofile` function calls in pickle files, leading to arbitrary code execution when victims load the crafted files.

picklescan < 0.0.28 cve vulnerability deserialization python picklescan
2t 1c
high advisory

CVE-2025-71362 — picklescan before 0.0.33 fails to detect unsafe deserialization when numpy.f2py.crackfortran functio...

picklescan versions prior to 0.0.33 are vulnerable to unsafe deserialization via CVE-2025-71362, allowing attackers to embed malicious code in pickle files that executes due to `numpy.f2py.crackfortran` calling `eval` on arbitrary strings when loaded from untrusted sources, leading to arbitrary code execution.

picklescan cve deserialization python arbitrary-code-execution vulnerability
2t 1c
high advisory

CVE-2025-71360: Picklescan RCE via Undetected Malicious Pickle Files

A high-severity deserialization of untrusted data vulnerability (CVE-2025-71360) in picklescan versions before 0.0.29 allows attackers to embed undetected remote command execution code within malicious pickle files, leading to arbitrary code execution when loaded by victims.

picklescan < 0.0.29 deserialization rce vulnerability python
2t 1c
high advisory

CVE-2025-71356: picklescan Deserialization Vulnerability Leads to RCE

A critical deserialization vulnerability (CVE-2025-71356) in `picklescan` versions prior to 0.0.28 allows attackers to embed undetected malicious code within Python pickle files, leading to remote code execution when these files are loaded by victims.

picklescan < 0.0.28 deserialization python vulnerability rce machine-learning
1t 1c
high advisory

CVE-2025-71347: Picklescan Bypass Leads to Arbitrary Code Execution via Malicious Pickle Files

A critical vulnerability (CVE-2025-71347) exists in picklescan prior to version 0.0.33, allowing remote attackers to bypass security checks by failing to detect malicious pickle files leveraging the numpy.f2py.crackfortran.param_eval function, leading to arbitrary code execution upon deserialization of untrusted data.

picklescan < 0.0.33 deserialization python arbitrary-code-execution vulnerability cve defense-evasion
2t 1c 2i
high advisory

CVE-2025-71345: Picklescan Malicious Pickle File Detection Bypass Leading to RCE

CVE-2025-71345 describes a critical vulnerability in `picklescan` versions prior to 0.0.30, where attackers can embed undetected malicious code within pickle files that specifically invoke the `torch.utils.bottleneck.__main__.run_autograd_prof` function, leading to remote code execution upon deserialization by bypassing `picklescan`'s security checks.

picklescan < 0.0.30 remote-code-execution deserialization python machine-learning vulnerability
2t 1c
high advisory

CVE-2025-71343 — picklescan Detection Bypass via Malicious Pickle Files

A deserialization vulnerability, CVE-2025-71343, in picklescan before version 0.0.30 allows attackers to craft malicious pickle files that evade detection and lead to arbitrary code execution when loaded via `pickle.load()`.

picklescan < 0.0.30 deserialization remote-code-execution python vulnerability detection-bypass
2t 1c
high advisory

CVE-2025-71342: picklescan Remote Code Execution Vulnerability

A critical vulnerability (CVE-2025-71342) exists in picklescan versions prior to 0.0.30, where it fails to detect malicious code embedded in Python pickle files by leveraging `idlelib.run.Executive.runcode` in reduce methods, allowing attackers to conceal and execute arbitrary code during `pickle.load` operations, leading to remote code execution (RCE) and potential supply chain attacks, particularly impacting PyTorch models.

picklescan < 0.0.30 vulnerability rce supply-chain python pickle pytorch
1t 1c