CVE-2025-71370
HighCVSS 8.1Summary
Picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().
Risk Assessment
The risk to the organization is the potential for arbitrary code execution by an attacker, which could lead to serious security breaches and data loss.
Recommendation
It is recommended to update picklescan to version 0.0.28 or later to protect against these malicious pickle files.
Original NVD description (English source)
picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().

