CVE-2025-46417
Published: 24 April 2025
Summary
CVE-2025-46417 is a medium-severity Incomplete List of Disallowed Inputs (CWE-184) vulnerability in Mmaitre314 Picklescan. Its CVSS base score is 6.8 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Python (T1059.006); ranked in the top 43.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-11963
Vulnerability details
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_server_certificate can exfiltrate data via DNS after deserialization.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerability in Picklescan allows evasion of detection for malicious pickle payloads that execute Python code (T1059.006) to steal credentials from local files (T1081), apply non-standard encoding for DNS-safety (T1132.002), and exfiltrate via DNS using ssl.get_server_certificate over an unencrypted non-C2 protocol (T1048.003).
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Spam filters rely on evolving blacklists, signatures, and heuristics of disallowed message patterns; keeping them updated per the control directly mitigates incomplete disallowed-input lists.