GHSA-qvp4-q2p5-22ggHighCVSS 8.1
picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils...
🔗 CVE IDs covered (1)
📋 Description
picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_config function within reduce methods. Attackers can craft pickle files embedding arbitrary code that evades detection but executes during pickle.load, enabling remote code execution in supply chain attacks.