CVE-2026-3490 - picklescan - Universal Blocklist Bypass via pkgutil.resolve_name
CVE ID :CVE-2026-3490 Published : June 17, 2026, 3:05 p.m. | 2 hours, 4 minutes ago Description :picklescan before 1.0.4 fails to block pkgutil.resolve_name, allowing attackers to bypass the entire blocklist by resolving any dangerous function through indirect REDUCE calls. Remote attackers...