โ† Back to Dashboard

CVE-2025-71361

HIGH NVD
CVSS Score
8.1
Severity
HIGH
Source
NVD
Published
Jun 24, 2026
Description

picklescan before 0.0.29 fails to detect malicious idlelib.calltip.Calltip.fetch_tip calls in pickle files, allowing remote code execution. Attackers can embed undetected payloads in pickle files that execute arbitrary code when loaded via pickle.load().

View Full Details โ† Back