⚠ Withdrawn by GitHub Security Advisories

Withdrawn: June 18, 2026

GHSA-6v84-v468-3c7fCriticalCVSS 9.8Disclosed before NVD

Duplicate Advisory: Picklescan has Incomplete List of Disallowed Inputs

Published
June 17, 2026
Last Modified
June 18, 2026

📋 Description

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-84r2-jw7c-4r5q. This link is maintained to preserve external references.

Original Description

picklescan before 0.0.33 contains an incomplete deny-list that fails to block pydoc.locate and operator.methodcaller functions, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle files using these unblocked functions to achieve arbitrary code execution when the pickle is deserialized.

🎯 Affected products1

  • pip/picklescan:< 0.0.33

🔗 References (4)