icon

We found results for “

CVE-2025-10156

Good to know:

icon
icon

Date: September 17, 2025

An Improper Handling of Exceptional Conditions vulnerability in the ZIP archive scanning component of mmaitre314 picklescan allows a remote attacker to bypass security scans. This is achieved by crafting a ZIP archive containing a file with a bad Cyclic Redundancy Check (CRC), which causes the scanner to halt and fail to analyze the contents for malicious pickle files. When the file incorrectly considered safe is loaded, it can lead to the execution of malicious code.

Severity Score

Severity Score

Weakness Type (CWE)

Protection Mechanism Failure

CWE-693

Improper Handling of Exceptional Conditions

CWE-755

Top Fix

icon

Upgrade Version

Upgrade to version picklescan - 0.0.31

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Do you need more information?

Contact Us