CVE-2026-53873 PUBLISHED

picklescan - Arbitrary Code Execution via profile.run() Blocklist Bypass

Assigner: VulnCheck
Reserved: 10.06.2026 Published: 17.06.2026 Updated: 17.06.2026

picklescan before 1.0.4 contains an incomplete blocklist for the profile module that fails to block the module-level profile.run() function, allowing attackers to achieve arbitrary code execution via exec(). Attackers can craft malicious pickle files calling profile.run(statement) to execute arbitrary Python code while picklescan reports zero security issues.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 9.3

Product Status

Vendor picklescan
Product picklescan
Versions Default: unaffected
  • affected from 0 to 1.0.4 (excl.)
  • Version 1.0.4 is unaffected

Credits

  • yash2998chhabria reporter

References

Problem Types

  • Incomplete List of Disallowed Inputs CWE