Vulnerabilidades em picklescan
24 resultadosCVE-2025-71323CRITICALpicklescan - Remote Code Execution via Unblocked ctypes ModuleEPSS 0.8%CVE-2025-71321CRITICALpicklescan - Arbitrary File Writing via distutils Module BypassEPSS 0.6%CVE-2025-71320CRITICALpicklescan - Remote Code Execution via Incomplete Disallowed InputsEPSS 0.6%CVE-2026-3490CRITICALpicklescan - Universal Blocklist Bypass via pkgutil.resolve_nameEPSS 0.6%CVE-2026-53874CRITICALpicklescan - Arbitrary Code Execution via Obfuscated eval CallEPSS 0.5%CVE-2026-53872HIGHpicklescan - Arbitrary File Read via Unsafe Pickle DeserializationEPSS 0.5%CVE-2025-71325CRITICALpicklescan - Detection Bypass via STACK_GLOBAL Opcode Parsing Logic FlawEPSS 0.5%CVE-2026-53873CRITICALpicklescan - Arbitrary Code Execution via profile.run() Blocklist BypassEPSS 0.5%CVE-2026-53875HIGHpicklescan - Scanning Bypass via Dynamic Eval in scan_pytorchEPSS 0.4%CVE-2025-71351HIGHpicklescan - Remote Code Execution via timeit.timeit() Detection BypassEPSS 0.4%CVE-2025-71322HIGHPickleScan - Unsafe Globals Check Bypass via pty.spawn FunctionEPSS 0.4%CVE-2025-71344HIGHpicklescan - Arbitrary Code Execution via Undetected ensurepip._run_pip FunctionEPSS 0.4%CVE-2025-71348HIGHpicklescan - Arbitrary Code Execution via torch.utils._config_module.load_config BypassEPSS 0.4%CVE-2025-71378HIGHpicklescan - Remote Code Execution via Undetected cProfile.runctx in Pickle FilesEPSS 0.3%CVE-2025-71339HIGHPicklescan - Arbitrary Code Execution via numpy.f2py.crackfortran._eval_length GadgetEPSS 0.3%CVE-2026-56304MEDIUMpicklescan - Arbitrary File Creation via logging.FileHandler DeserializationEPSS 0.3%CVE-2025-71357HIGHpicklescan - Arbitrary Code Execution via Undetected idlelib.pyshell.ModifiedInterpreter.runcommandEPSS 0.2%CVE-2025-71358HIGHpicklescan - Remote Code Execution via idlelib.autocomplete.AutoComplete.get_entityEPSS 0.2%CVE-2025-46417MEDIUMThe unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_server_certificate can exfiltrate data via DNS afteEPSS 0.2%CVE-2025-71365HIGHpicklescan - Arbitrary Code Execution via numpy.f2py.crackfortran.myeval Detection BypassEPSS —