Home

Description

picklescan before 0.0.27 contains a parsing logic error in the _list_globals function when handling STACK_GLOBAL opcodes, failing to track arguments in the correct range and allowing malicious pickle files to bypass detection. Attackers can craft pickle files with arguments at position zero to trigger unexpected exceptions and evade security scanning.

PUBLISHED Reserved 2026-06-08 | Published 2026-06-17 | Updated 2026-06-17 | Assigner VulnCheck




CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

Unchecked Error Condition

Product status

Default status
unaffected

Any version before 0.0.27
affected

0.0.27 (semver)
unaffected

Credits

Lyutoon reporter

References

github.com/...lescan/security/advisories/GHSA-9gvj-pp9x-gcfr exploit

github.com/...lescan/security/advisories/GHSA-9gvj-pp9x-gcfr (GHSA Advisory GHSA-9gvj-pp9x-gcfr) vendor-advisory

github.com/...ommit/2a8383cfeb4158567f9770d86597300c9e508d0f patch

www.vulncheck.com/...-stack-global-opcode-parsing-logic-flaw (VulnCheck Advisory: picklescan - Detection Bypass via STACK_GLOBAL Opcode Parsing Logic Flaw) third-party-advisory

cve.org (CVE-2025-71325)

nvd.nist.gov (CVE-2025-71325)

Download JSON