Skip to main content
Loading…
    CVE-2025-1716 — picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package (hosted, for example, on pypi. — CVE Database · The Intelligence Room