CVE-2025-71352
HIGH
8.1
CVSS 3.1
Description
picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle file reduce methods, allowing attackers to execute arbitrary code. Remote attackers can craft malicious pickle files with trace.Trace.runctx payloads that bypass picklescan detection and execute code upon pickle.load() invocation.
Metadata
Severity & Metrics
8.1
HIGH CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| picklescan | picklescan | — | 0 < 0.0.29, 0.0.29 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-693 | cna | Protection Mechanism Failure |
CVSS scores (2)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 8.1 | HIGH | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N |
| 7.6 | HIGH | 4.0 | cna | CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
References (2)
- GitHub Security Advisory (GHSA-g344-hcph-8vgg) https://github.com/mmaitre314/picklescan/security/advisories/GHSA-g344-hcph-8vgg
- VulnCheck Advisory: picklescan - Remote Code Execution via Undetected trace.Trace.runctx in Pickle Files https://www.vulncheck.com/advisories/picklescan-remote-code-execution-via-undetected-trace-trace-runctx-in-pickle-files