CVE-2025-71372: Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.getlincoef gadget in pickle __reduce__ methods, all
Summary
Picklescan (a security tool that checks pickle files, which are Python files that serialize and deserialize objects) before version 0.0.33 fails to detect a specific dangerous code gadget called numpy.f2py.crackfortran.getlincoef that can hide in pickle __reduce__ methods (special functions that control how objects are reconstructed). This allows attackers to create malicious pickle files that execute arbitrary code when opened, potentially compromising shared model files in supply chains.
Vulnerability Details
8.1(high)
EPSS: 0.0%
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
network
low
none
required
July 3, 2026
Classification
Taxonomy References
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-71372
First tracked: July 4, 2026 at 08:07 AM
Classified by LLM (prompt v3) · confidence: 92%