PatchSiren

PatchSiren cyber security CVE debrief

CVE-2025-71347 picklescan CVE debrief

CVE-2025-71347 is a high-severity vulnerability in picklescan before version 0.0.33. The vulnerability allows remote attackers to embed undetected code in pickle files that executes during deserialization, enabling arbitrary code execution in applications loading untrusted pickle data. This issue arises from the failure of picklescan to detect malicious pickle files using the numpy.f2py.crackfortran.param_eval function in reduce methods. The vulnerability has a CVSS score of 7.6 and is classified as HIGH. The CVE was published on 2026-07-04T02:16:21.803Z and has not been modified since then.

Vendor
picklescan
Product
Unknown
CVSS
HIGH 7.6
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-04
Original CVE updated
2026-07-04
Advisory published
2026-07-04
Advisory updated
2026-07-04

Who should care

Developers and users of picklescan, especially those using versions before 0.0.33, should be aware of this vulnerability. Applications that load untrusted pickle data are at risk of arbitrary code execution. Users should prioritize updating picklescan to version 0.0.33 or later to mitigate this vulnerability.

Technical summary

The vulnerability in picklescan before 0.0.33 stems from its inability to detect malicious pickle files that utilize the numpy.f2py.crackfortran.param_eval function in reduce methods. This oversight allows attackers to craft pickle files that, when deserialized, execute arbitrary code. The issue is particularly concerning for applications that deserialize untrusted pickle data, as it could lead to remote code execution. The Common Weakness Enumeration (CWE) associated with this vulnerability is CWE-502.

Defensive priority

High priority should be given to updating picklescan to version 0.0.33 or later. In the meantime, defenders should treat pickle files from untrusted sources with extreme caution and consider implementing additional security measures to detect and prevent the loading of malicious pickle files.

Recommended defensive actions

  • Update picklescan to version 0.0.33 or later.
  • Treat pickle files from untrusted sources with extreme caution.
  • Implement additional security measures to detect and prevent the loading of malicious pickle files.
  • Monitor applications that deserialize pickle data for suspicious activity.
  • Consider using alternative serialization formats that are safer than pickle.

Evidence notes

The evidence for this CVE comes from the NVD and Vulncheck. The CVE was published on 2026-07-04T02:16:21.803Z and has not been modified since then. The vulnerability details were obtained from the CVE record and the Vulncheck advisory.

Official resources

This article is AI-assisted and based on the supplied source corpus.