picklescan - Arbitrary Code Execution via profile.run() Blocklist Bypass | Advisories

Advisories

picklescan - Arbitrary Code Execution via profile.run() Blocklist Bypass

severity: critical
date: 6/17/2026
Affecting: picklescan >= 0, < 1.0.4
CVE: CVE-2026-53873
CWE: CWE-184 Incomplete List of Disallowed Inputs
CVSS: 9.3
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: GHSA Advisory GHSA-7wx9-6375-f5wh
Credit: yash2998chhabria
Description: picklescan before 1.0.4 contains an incomplete blocklist for the profile module that fails to block the module-level profile.run() function, allowing attackers to achieve arbitrary code execution via exec(). Attackers can craft malicious pickle files calling profile.run(statement) to execute arbitrary Python code while picklescan reports zero security issues.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo