Description
picklescan before 0.0.33 contains an arbitrary file writing vulnerability that allows attackers to bypass the dangerous blocklist by using distutils.file_util.write_file. Attackers can construct malicious pickle objects to overwrite critical system files and achieve denial of service or remote code execution.
Problem types
Deserialization of Untrusted Data
Product status
Any version before 0.0.33
0.0.33 (semver)
Credits
0x-Apollyon
References
github.com/...lescan/security/advisories/GHSA-m273-6v24-x4m4
github.com/...lescan/security/advisories/GHSA-m273-6v24-x4m4 (GHSA Advisory GHSA-m273-6v24-x4m4)
www.vulncheck.com/...ile-writing-via-distutils-module-bypass (VulnCheck Advisory: picklescan - Arbitrary File Writing via distutils Module Bypass)