Impact
picklescan prior to version 0.0.29 does not recognize the built‑in Python function profile.Profile.run when it is invoked inside pickle reduce methods. A malicious actor can craft a pickle payload that includes this function call; when the payload is deserialized by picklescan, the profile.Profile.run code executes, enabling the attacker to run arbitrary code on the target system. The vulnerability therefore provides direct access to execute commands or programs with the privileges of the running process.
Affected Systems
The vulnerability affects the picklescan package, specifically all releases older than version 0.0.29. Any deployment using picklescan before this version is susceptible. Users of picklescan 0.0.29 and later are not affected.
Risk and Exploitability
With a CVSS score of 7.6, the issue is considered high severity. Attackers must be able to supply a crafted pickle file to the vulnerable picklescan instance; no additional network access or local privileges beyond normal operation are required. Because the EPSS score is not available, the overall likelihood of exploitation cannot be quantified from the data. The vulnerability is not listed in the CISA KEV catalog, so there is no known widespread exploitation at the time of this assessment.
OpenCVE Enrichment