CVE-2025-10155

PickleScan Security Bypass Using Misleading File Extension

Description

An Improper Input Validation vulnerability in the scanning logic of mmaitre314 picklescan versions up to and including 0.0.30 allows a remote attacker to bypass pickle files security checks by supplying a standard pickle file with a PyTorch-related file extension. When the pickle file incorrectly considered safe is loaded, it can lead to the execution of malicious code.

INFO

Published Date :

2025-09-17T09:38:15.056Z

Last Modified :

2025-09-17T13:04:03.089Z

Source :

JFROG

AFFECTED PRODUCTS

The following products are affected by CVE-2025-10155 vulnerability.

Vendors	Products
Mmaitre314	Picklescan

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-10155.

URL	Resource
https://github.com/mmaitre314/picklescan/blob/58983e1c20973ac42f2df7ff15d7c8cd32f9b688/src/picklescan/scanner.py#L463
https://github.com/mmaitre314/picklescan/security/advisories/GHSA-jgw4-cr84-mqxg

CVSS Vulnerability Scoring System

V4
V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact