CVE-2025-71325
Published: 17 June 2026
Summary
CVE-2025-71325 is a critical-severity Unchecked Error Condition (CWE-391) vulnerability. Its CVSS base score is 9.3 (Critical).
Operationally, exploitation aligns with the MITRE ATT&CK technique Obfuscated Files or Information (T1027); ranked at the 37.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-210271
Vulnerability details
picklescan before 0.0.27 contains a parsing logic error in the _list_globals function when handling STACK_GLOBAL opcodes, failing to track arguments in the correct range and allowing malicious pickle files to bypass detection. Attackers can craft pickle files with arguments at…
more
position zero to trigger unexpected exceptions and evade security scanning.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Bypass in pickle scanner directly facilitates undetected malicious Python deserialization payloads.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Ensures audit logging process failures are checked and trigger defined responses instead of remaining unchecked.
Policy enforces checking and handling of error conditions as part of incident response processes.
Testing IR effectiveness identifies and drives fixes for unchecked error conditions that fail to initiate incident handling.
Formal incident handling procedures enforce checking and acting on error conditions that could indicate security incidents.
Mandates ongoing correlation, analysis, and response to monitoring results, reducing unchecked error conditions from control assessments.