CVE-2026-56304 | picklescan up to 1.0.0 logging.FileHandler deserialization (GHSA-m7j5-r2p5-c39r)

Inserito da Angelo Barbosa | Giu 20, 2026 | CVE

A vulnerability marked as critical has been reported in picklescan up to 1.0.0. This vulnerability affects the function logging.FileHandler. The manipulation leads to deserialization.

This vulnerability is documented as CVE-2026-56304. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-56304 | picklescan up to 1.0.0 logging.FileHandler deserialization (GHSA-m7j5-r2p5-c39r)

Post correlati

CVE-2025-47151 | Entr’ouvert Lasso 2.5.1/2.8.2 SAML Response lasso_node_impl_init_from_xml type confusion (TALOS-2025-2193)

CVE-2023-51761 | Emerson Rosemount GC370XA 4.1.5 improper authentication (icsa-24-030-01)

CVE-2024-10247 | YouTube Gallery and Vimeo Gallery Plugin up to 2.4.2 on WordPress sql injection

CVE-2026-32148 | hexpm hex up to 2.4.1 RemoteConverger integrity check (GHSA-hmv9-4mfr-m92v)