picklescan Vulnerabilities

pip AI Security

AI Threat Alert tracks 91 known vulnerabilities in picklescan, 12 rated critical — an AI/ML ai security in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
53
Risk Score
91
Total CVEs
12
Critical
pip
Ecosystem
Jul 4, 2026
Last CVE
62%
Patch Rate
12d
Avg Time to Patch
414 stars 48 forks 6 issues 3 dependents Last push May 14, 2026
View on GitHub

Known Vulnerabilities (93 total, page 2 of 4)

Severity CVE ID Summary CVSS Published
CRITICAL CVE-2026-53874 picklescan: scanner bypass enables pickle RCE 9.8 Jun 17, 2026 HIGH CVE-2026-53872 picklescan: arbitrary file read bypasses RCE blocklist 7.5 Jun 17, 2026 CRITICAL CVE-2026-3490 picklescan: blocklist bypass enables full RCE 10.0 Jun 17, 2026 HIGH CVE-2025-71322 PickleScan: pty.spawn bypass enables RCE in model scans 8.8 Jun 17, 2026 CRITICAL CVE-2025-71325 picklescan: scanner bypass enables RCE via model files 9.8 Jun 17, 2026 CRITICAL CVE-2025-71323 picklescan: ctypes bypass enables full RCE via pickle files 9.8 Jun 17, 2026 CRITICAL CVE-2025-71320 picklescan: deny-list bypass enables arbitrary RCE 9.8 Jun 17, 2026 CRITICAL CVE-2025-71321 picklescan: blocklist bypass allows arbitrary file write/RCE 9.8 Jun 17, 2026 UNKNOWN CVE-2026-53875 picklescan: scanner bypass enables PyTorch RCE -- Jun 17, 2026 MEDIUM CVE-2025-1889 picklescan: extension bypass enables RCE on model load -- Mar 3, 2025 MEDIUM CVE-2025-1716 picklescan: scanner bypass enables supply chain RCE -- Mar 3, 2025 HIGH CVE-2025-46417 picklescan: scanner bypass enables DNS data exfiltration -- Apr 7, 2025 MEDIUM GHSA-fj43-3qmq-673f picklescan: numpy bypass enables RCE in ML model pipelines -- Apr 7, 2025 MEDIUM GHSA-v7x6-rv5q-mhwc picklescan: bypass allows silent RCE in ML pipelines -- Apr 7, 2025 HIGH GHSA-9gvj-pp9x-gcfr picklescan: detection bypass allows malicious pickle exec -- Aug 12, 2025 MEDIUM GHSA-4r9r-ch6f-vxmx picklescan: PyTorch bypass allows undetected RCE -- Aug 22, 2025 MEDIUM GHSA-86cj-95qr-2p4f picklescan: detection bypass enables PyTorch model RCE -- Aug 22, 2025 MEDIUM GHSA-f4x7-rfwp-v3xw picklescan: scanner bypass enables RCE via PyTorch function -- Aug 22, 2025 MEDIUM GHSA-f745-w6jp-hpxx picklescan: RCE bypass via torch.utils.collect_env -- Aug 22, 2025 MEDIUM GHSA-h3qp-7fh3-f8h4 picklescan: detection bypass via PyTorch proxy RCE -- Aug 22, 2025 MEDIUM GHSA-vr7h-p6mm-wpmh picklescan: PyTorch gadget bypasses pickle RCE detection -- Aug 22, 2025 MEDIUM GHSA-vv6j-3g6g-2pvj picklescan: PyTorch gadget bypasses scanner, enables RCE -- Aug 22, 2025 MEDIUM GHSA-5qwp-399c-mjwf picklescan: bypass enables undetected RCE in ML models -- Aug 26, 2025 MEDIUM GHSA-g344-hcph-8vgg picklescan: scanner bypass enables RCE in ML pipelines -- Aug 26, 2025 MEDIUM GHSA-x696-vm39-cp64 picklescan: scan bypass allows RCE in ML pipelines -- Aug 26, 2025

Showing 26–50 of 93

Frequently asked questions

What is picklescan?

picklescan is an AI/ML ai security tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does picklescan have?

picklescan has 91 known CVEs, 12 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is picklescan distributed in?

picklescan is distributed via the pip ecosystem and categorized as ai security.

Where does the picklescan vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of picklescan?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor picklescan in your stack

Get instant alerts when new vulnerabilities affect picklescan. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring