HIGH 7.8

PYSEC-2025-151

Details

An Improper Input Validation vulnerability in the scanning logic of mmaitre314 picklescan versions up to and including 0.0.30 allows a remote attacker to bypass pickle files security checks by supplying a standard pickle file with a PyTorch-related file extension. When the pickle file incorrectly considered safe is loaded, it can lead to the execution of malicious code.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / picklescan

Introduced in: 0 Fixed in: 0.0.31

Fix pip install --upgrade 'picklescan>=0.0.31'

References

https://github.com/mmaitre314/picklescan/blob/58983e1c20973ac42f2df7ff15d7c8cd32f9b688/src/picklescan/scanner.py#L463 [WEB]
https://github.com/mmaitre314/picklescan/security/advisories/GHSA-jgw4-cr84-mqxg [FIX]