pkg:PyPI/picklescan

All known vulnerabilities

• CRITICAL9.8CVE-2025-1945Zip Flag Bit Exploit Crashes Picklescan But Not PyTorch
  from 0, < e58e45e0d9e091159c1554f9b04828bbb40b9781 | from 0, < 0.0.23
• CRITICAL9.8CVE-2025-1945Zip Flag Bit Exploit Crashes Picklescan But Not PyTorch
  from 0, < 0.0.23
• CRITICAL9.8CVE-2025-1716PyTorch Model Files Can Bypass Pickle Scanners via Unexpected Pickle Extensions
  from 0, < 0.0.22
• CRITICAL9.8PyTorch Model Files Can Bypass Pickle Scanners via Unexpected Pickle Extensions
  from 0, < 78ce704227c51f070c0c5fb4b466d92c62a7aa3d | from 0, < 0.0.21
• CRITICAL9.8PyTorch Model Files Can Bypass Pickle Scanners via Unexpected Pickle Extensions
  from 0, < 0.0.22
• CRITICAL9.8PyTorch Model Files Can Bypass Pickle Scanners via Unexpected Pickle Extensions
  from 0, < 0.0.22
• HIGH8.3Picklescan is Vulnerable to Unsafe Globals Check Bypass through Subclass Imports
  from 0, < 0.0.31
• HIGH8.3Picklescan is Vulnerable to Unsafe Globals Check Bypass through Subclass Imports
  from 0, < 0.0.31
• HIGH7.8Picklescan Bypass is Possible via File Extension Mismatch
  from 0, < 0.0.31
• HIGH7.8Picklescan Bypass is Possible via File Extension Mismatch
  from 0, < 0.0.31
• HIGH7.5Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check
  from 0, < 0.0.31
• HIGH7.5Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check
  from 0, < 0.0.31
• MEDIUM6.5Zip Exploit Crashes Picklescan But Not PyTorch
  from 0, < e58e45e0d9e091159c1554f9b04828bbb40b9781 | from 0, < 0.0.23
• MEDIUM6.5Zip Exploit Crashes Picklescan But Not PyTorch
  from 0, < 0.0.23
• —Picklescan Vulnerable to Exfiltration via DNS via linecache and ssl.get_server_certificate
  from 0, < 0.0.25
• —Picklescan Vulnerable to Exfiltration via DNS via linecache and ssl.get_server_certificate
  from 0, < 0.0.25