Impact
picklescan prior to 0.0.30 fails to detect calls to cProfile.run embedded within pickle reduce methods, which permits attackers to embed code that is executed during deserialization. This flaw aligns with CWE‑502, enabling arbitrary code execution by manipulating pickle payloads. The outcome is that any system that deserializes untrusted pickle data using picklescan could run attacker‑supplied code without additional privileges.
Affected Systems
The vulnerability affects the picklescan package provided by mmaitre314. Versions earlier than 0.0.30 are susceptible; newer releases contain the fix.
Risk and Exploitability
The CVSS score is 7.6, indicating a high severity. No EPSS data is available, and the flaw is not listed in CISA’s KEV catalog. Attackers can supply crafted pickle files remotely or locally to applications that rely on picklescan for safety checks, bypassing detection and triggering code execution. As the flaw is a direct deserialization issue, systems that deserialize untrusted data are at risk and would benefit from immediate remediation.
OpenCVE Enrichment