B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2025-71339 - Picklescan - Arbitrary Code Execution via numpy.f2py.crackfortran._eval_length Gadget

CVE ID :CVE-2025-71339 Published : June 22, 2026, 9:04 p.m. | 2 hours, 5 minutes ago Description :Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran._eval_length gadget in pickle __reduce__ methods, allowing arbitrary code execution. Attackers can craft malicious pickle...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-56348 - n8n - Credential Exfiltration via Allowed HTTP Request Domains Bypass in Dynamic Node Parameters Endpoint

2026-06-22 Mittel

CVE-2026-56324 - Capgo - Rate Limit Bypass via User-Controlled device_id Parameter

2026-06-22 Mittel

CVE-2026-56323 - Capgo - Unauthenticated Channel Enumeration and App Oracle via GET /channel_self

2026-06-22 Mittel

CVE-2026-56266 - Crawl4AI - Server-Side Request Forgery via Direct Crawl Endpoints

2026-06-22 Mittel

CVE-2025-71358 - picklescan - Remote Code Execution via idlelib.autocomplete.AutoComplete.get_entity

2026-06-22 Mittel

CVE-2025-71344 - picklescan - Arbitrary Code Execution via Undetected ensurepip._run_pip Function

2026-06-22 Mittel