CVE Catalog

CVE-2025-71353

HighCVSS 8.1
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.30%

22th percentile — higher than 22% of all known CVEs

Summary

A vulnerability in picklescan before version 0.0.28 allows bypassing detection of malicious pickle files. Attackers can exploit the torch._dynamo.guards.GuardBuilder.get function in reduce methods to embed code that evades scanning and executes arbitrary commands upon loading.

Risk Assessment

The organization is at risk of remote code execution (RCE) by loading a crafted pickle file, potentially leading to system compromise, data theft, or further attack propagation.

Recommendation

Immediately update picklescan to version 0.0.28 or later. Additionally, implement validation mechanisms and restrict loading of pickle files from untrusted sources.

Original NVD description (English source)

picklescan before 0.0.28 fails to detect malicious pickle files that exploit torch._dynamo.guards.GuardBuilder.get function in reduce methods. Attackers can craft pickle files with embedded code that evades picklescan detection and executes arbitrary commands when loaded.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS