CVE Catalog

CVE-2025-71370

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Summary

Picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().

Risk Assessment

The risk to the organization is the potential for arbitrary code execution by an attacker, which could lead to serious security breaches and data loss.

Recommendation

It is recommended to update picklescan to version 0.0.28 or later to protect against these malicious pickle files.

Original NVD description (English source)

picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers can craft malicious pickle files that bypass picklescan detection and execute arbitrary code when loaded via pickle.load().

Vulnerability data from NVD (NIST) · CISA KEV · EPSS