PatchSiren

PatchSiren cyber security CVE debrief

CVE-2025-71372 Picklescan CVE debrief

CVE-2025-71372 is a high-severity vulnerability in Picklescan before version 0.0.33. The vulnerability allows attackers to craft malicious pickle files that can execute arbitrary Python code when loaded, bypassing Picklescan's safety checks. This can enable supply-chain poisoning of shared model files. The vulnerability has a CVSS score of 7.6 and is considered high severity. The CVE was published on July 4, 2026.

Vendor
Picklescan
Product
Unknown
CVSS
HIGH 7.6
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-04
Original CVE updated
2026-07-04
Advisory published
2026-07-04
Advisory updated
2026-07-04

Who should care

Organizations using Picklescan before version 0.0.33 should be aware of this vulnerability and take steps to mitigate it. This includes updating to version 0.0.33 or later, and being cautious when loading pickle files from untrusted sources. Additionally, developers and security teams should review their supply chain for potential vulnerabilities.

Technical summary

The vulnerability exists in the Picklescan library, which is used to detect and prevent arbitrary code execution in pickle files. The library fails to detect the numpy.f2py.crackfortran.getlincoef gadget in pickle __reduce__ methods, allowing attackers to craft malicious pickle files that can execute arbitrary Python code when loaded. This can be used to bypass Picklescan's safety checks and enable supply-chain poisoning of shared model files.

Defensive priority

High priority should be given to updating Picklescan to version 0.0.33 or later. Additionally, organizations should be cautious when loading pickle files from untrusted sources and review their supply chain for potential vulnerabilities.

Recommended defensive actions

  • Update Picklescan to version 0.0.33 or later
  • Be cautious when loading pickle files from untrusted sources
  • Review supply chain for potential vulnerabilities
  • Monitor for suspicious activity
  • Implement additional security controls as needed

Evidence notes

The CVE-2025-71372 vulnerability was published on July 4, 2026, and has a CVSS score of 7.6. The vulnerability exists in Picklescan before version 0.0.33 and allows attackers to craft malicious pickle files that can execute arbitrary Python code when loaded. The vulnerability is considered high severity and organizations should take steps to mitigate it.

Official resources

This article was generated with AI assistance based on the supplied source corpus and is intended for informational purposes only.