GHSA-qvp4-q2p5-22ggHighCVSS 8.1

picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils...

Published
June 21, 2026
Last Modified
June 21, 2026

🔗 CVE IDs covered (1)

📋 Description

picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_config function within reduce methods. Attackers can craft pickle files embedding arbitrary code that evades detection but executes during pickle.load, enabling remote code execution in supply chain attacks.

🔗 References (4)