Vulnerability	Vulnerable Version
M Deserialization of Untrusted Data pypickle is a pypickle is a Python library to save and load variables in pickle files. Affected versions of this package are vulnerable to Deserialization of Untrusted Data through the `load` function. An attacker can manipulate serialized objects to execute arbitrary code by supplying crafted input that leads to deserialization of untrusted data. How to fix Deserialization of Untrusted Data? Upgrade `pypickle` to version 2.0.0 or higher.	[,2.0.0)
M Improper Authorization pypickle is a pypickle is a Python library to save and load variables in pickle files. Affected versions of this package are vulnerable to Improper Authorization due to the `Save` function. An attacker can manipulate the authorization process by exploiting local access to the system. This is only exploitable if the attacker has local access to the system. How to fix Improper Authorization? Upgrade `pypickle` to version 2.0.0 or higher.	[,2.0.0)

Deserialization of Untrusted Data

pypickle is a pypickle is a Python library to save and load variables in pickle files.

Affected versions of this package are vulnerable to Deserialization of Untrusted Data through the load function. An attacker can manipulate serialized objects to execute arbitrary code by supplying crafted input that leads to deserialization of untrusted data.

How to fix Deserialization of Untrusted Data?

Upgrade pypickle to version 2.0.0 or higher.

[,2.0.0)

Improper Authorization

pypickle is a pypickle is a Python library to save and load variables in pickle files.

Affected versions of this package are vulnerable to Improper Authorization due to the Save function. An attacker can manipulate the authorization process by exploiting local access to the system. This is only exploitable if the attacker has local access to the system.

How to fix Improper Authorization?

Upgrade pypickle to version 2.0.0 or higher.

[,2.0.0)

Go back to all versions of this package