Remote Code Execution Vulnerability in Picklescan by GitHub
CVE-2025-71342

7.6HIGH

Key Information:

Vendor

Picklescan

Vendor
CVE Published:
4 July 2026

What is CVE-2025-71342?

The Picklescan tool prior to version 0.0.30 has a critical weakness in its file parsing mechanism, failing to detect malicious pickle files. This vulnerability arises from the way it utilizes idlelib.run.Executive.runcode, allowing attackers to embed harmful code within these pickle files. When these files are loaded using pickle.load, the embedded code is executed, potentially leading to unauthorized access and manipulation of PyTorch models, facilitating supply chain attacks and compromising systems relying on this tool.

Affected Version(s)

picklescan 0 < 0.0.30

picklescan 0.0.30

References

CVSS V4

Score:
7.6
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

FredericDT
.