CVE-2025-71341
Deferred Deferred - Pending Action
Picklescan Profile.runctx Remote Code Execution Vulnerability

Publication date: 2026-06-23

Last updated on: 2026-06-23

Assigner: VulnCheck

Description
picklescan before 0.0.29 fails to detect the profile.Profile.runctx function when analyzing pickle files, allowing attackers to embed undetected malicious code. Remote attackers can craft malicious pickle files using profile.Profile.runctx in the reduce method to achieve remote code execution when the pickle file is loaded.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-23
Last Modified
2026-06-23
Generated
2026-06-23
AI Q&A
2026-06-23
EPSS Evaluated
N/A
NVD
CVE-2025-71341
EUVD
EUVD-2025-210305
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-502 The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-71341 is a vulnerability in the picklescan library versions before 0.0.29 where the tool fails to detect the profile.Profile.runctx function when analyzing pickle files.

This failure allows attackers to embed malicious code inside pickle files using profile.Profile.runctx in the reduce method, which picklescan does not flag as dangerous.

When such a malicious pickle file is loaded, it can execute arbitrary code remotely, leading to remote code execution.

Impact Analysis

This vulnerability can lead to remote code execution on systems that load malicious pickle files crafted to exploit this flaw.

Attackers can execute arbitrary commands, potentially compromising the affected system.

It also poses a risk of supply chain attacks, where infected pickle files could be distributed through machine learning models, APIs, or saved Python objects.

Organizations or individuals relying on picklescan to detect malicious pickle files are particularly at risk.

Detection Guidance

This vulnerability involves malicious pickle files crafted using the profile.Profile.runctx function in the reduce method, which picklescan versions before 0.0.29 fail to detect.

To detect this vulnerability on your system, you should scan pickle files with picklescan version 0.0.29 or later, as earlier versions do not detect the malicious payload.

A practical approach is to run picklescan on suspicious pickle files to check for malicious code execution attempts.

  • Use the command: `picklescan suspicious_file.pkl` to scan a pickle file.
  • Monitor for unusual execution of system commands embedded in pickle files, such as `whoami`, which attackers might use to verify code execution.
Mitigation Strategies

The primary mitigation step is to upgrade picklescan to version 0.0.29 or later, where the vulnerability is patched.

Avoid loading pickle files from untrusted or unauthenticated sources, as malicious pickle files can execute arbitrary code when loaded.

Implement strict validation and scanning of pickle files before loading them into your systems.

Consider alternative serialization formats that are safer than pickle for untrusted data.

Compliance Impact

This vulnerability allows remote code execution through malicious pickle files that bypass detection, potentially leading to unauthorized access or manipulation of sensitive data.

Such unauthorized access or data breaches could impact compliance with common standards and regulations like GDPR and HIPAA, which require protection of personal and sensitive information.

Organizations relying on picklescan for security may face increased risk of data compromise, thereby affecting their ability to meet regulatory requirements for data security and privacy.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-71341. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart