PatchSiren cyber security CVE debrief
CVE-2025-71347 picklescan CVE debrief
CVE-2025-71347 is a high-severity vulnerability in picklescan before version 0.0.33. The vulnerability allows remote attackers to embed undetected code in pickle files that executes during deserialization, enabling arbitrary code execution in applications loading untrusted pickle data. This issue arises from the failure of picklescan to detect malicious pickle files using the numpy.f2py.crackfortran.param_eval function in reduce methods. The vulnerability has a CVSS score of 7.6 and is classified as HIGH. The CVE was published on 2026-07-04T02:16:21.803Z and has not been modified since then.
- Vendor
- picklescan
- Product
- Unknown
- CVSS
- HIGH 7.6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-04
- Original CVE updated
- 2026-07-04
- Advisory published
- 2026-07-04
- Advisory updated
- 2026-07-04
Who should care
Developers and users of picklescan, especially those using versions before 0.0.33, should be aware of this vulnerability. Applications that load untrusted pickle data are at risk of arbitrary code execution. Users should prioritize updating picklescan to version 0.0.33 or later to mitigate this vulnerability.
Technical summary
The vulnerability in picklescan before 0.0.33 stems from its inability to detect malicious pickle files that utilize the numpy.f2py.crackfortran.param_eval function in reduce methods. This oversight allows attackers to craft pickle files that, when deserialized, execute arbitrary code. The issue is particularly concerning for applications that deserialize untrusted pickle data, as it could lead to remote code execution. The Common Weakness Enumeration (CWE) associated with this vulnerability is CWE-502.
Defensive priority
High priority should be given to updating picklescan to version 0.0.33 or later. In the meantime, defenders should treat pickle files from untrusted sources with extreme caution and consider implementing additional security measures to detect and prevent the loading of malicious pickle files.
Recommended defensive actions
- Update picklescan to version 0.0.33 or later.
- Treat pickle files from untrusted sources with extreme caution.
- Implement additional security measures to detect and prevent the loading of malicious pickle files.
- Monitor applications that deserialize pickle data for suspicious activity.
- Consider using alternative serialization formats that are safer than pickle.
Evidence notes
The evidence for this CVE comes from the NVD and Vulncheck. The CVE was published on 2026-07-04T02:16:21.803Z and has not been modified since then. The vulnerability details were obtained from the CVE record and the Vulncheck advisory.
Official resources
This article is AI-assisted and based on the supplied source corpus.