GHSA-5gp7-4733-2w2v

Suggest an improvement
Source
https://github.com/advisories/GHSA-5gp7-4733-2w2v
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/06/GHSA-5gp7-4733-2w2v/GHSA-5gp7-4733-2w2v.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-5gp7-4733-2w2v
Withdrawn
2026-06-18T14:41:20Z
Published
2026-06-17T18:35:56Z
Modified
2026-06-18T14:45:19.113277186Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
  • 8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X CVSS Calculator
Summary
Duplicate Advisory: Picklescan Bypasses Unsafe Globals Check using pty.spawn
Details

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-hgrh-qx5j-jfwx. This link is maintained to preserve external references.

Original Description

PickleScan before 0.0.33 fails to include the pty.spawn function in its unsafe globals list, allowing attackers to bypass security checks. Malicious actors can craft pickle payloads using pty.spawn to achieve arbitrary code execution when files are processed by PickleScan.

Database specific
{
    "github_reviewed_at": "2026-06-18T14:41:20Z",
    "cwe_ids": [
        "CWE-693"
    ],
    "github_reviewed": true,
    "nvd_published_at": "2026-06-17T17:16:40Z",
    "severity": "HIGH"
}
References

Affected packages

PyPI / picklescan

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

0.*
0.0.1
0.0.2
0.0.3
0.0.4
0.0.5
0.0.6
0.0.7
0.0.8
0.0.9
0.0.10
0.0.11
0.0.12
0.0.13
0.0.14
0.0.15
0.0.16
0.0.17
0.0.18
0.0.19
0.0.20
0.0.21
0.0.22
0.0.23
0.0.24
0.0.25
0.0.26
0.0.27
0.0.28
0.0.29
0.0.30
0.0.31
0.0.32
0.0.33
0.0.34
0.0.35
1.*
1.0.0
1.0.1
1.0.2
1.0.3
1.0.4

Database specific

source
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/06/GHSA-5gp7-4733-2w2v/GHSA-5gp7-4733-2w2v.json"
last_known_affected_version_range
"< 0.0.33"