picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create arbitrary zero-byte files via logging.FileHandler class instantiation. Attackers can exploit this by crafting malicious pickle payloads to bypass RCE blocklists and create lock files or other filesystem artifacts, potentially causing denial of service or application disruption.
PUBLISHED5.2CWE-502
picklescan - Arbitrary File Creation via logging.FileHandler Deserialization
Problem type
Affected products
picklescan
picklescan
< 1.0.1 - AFFECTED
1.0.1 - UNAFFECTED
References
GHSA Advisory GHSA-m7j5-r2p5-c39r
https://github.com/mmaitre314/picklescan/security/advisories/GHSA-m7j5-r2p5-c39r
VulnCheck Advisory: picklescan - Arbitrary File Creation via logging.FileHandler Deserialization
https://www.vulncheck.com/advisories/picklescan-arbitrary-file-creation-via-logging-filehandler-deserialization
JSON source
https://cveawg.mitre.org/api/cve/CVE-2026-56304Click to expand
{
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"cveMetadata": {
"cveId": "CVE-2026-56304",
"assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"assignerShortName": "VulnCheck",
"dateUpdated": "2026-06-20T15:24:46.782Z",
"dateReserved": "2026-06-20T12:53:19.893Z",
"datePublished": "2026-06-20T15:24:46.782Z",
"state": "PUBLISHED"
},
"containers": {
"cna": {
"providerMetadata": {
"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"shortName": "VulnCheck",
"dateUpdated": "2026-06-20T15:24:46.782Z"
},
"datePublic": "2026-02-02T00:00:00.000Z",
"title": "picklescan - Arbitrary File Creation via logging.FileHandler Deserialization",
"descriptions": [
{
"lang": "en",
"value": "picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create arbitrary zero-byte files via logging.FileHandler class instantiation. Attackers can exploit this by crafting malicious pickle payloads to bypass RCE blocklists and create lock files or other filesystem artifacts, potentially causing denial of service or application disruption."
}
],
"affected": [
{
"vendor": "picklescan",
"product": "picklescan",
"defaultStatus": "unaffected",
"versions": [
{
"version": "0",
"status": "affected",
"versionType": "semver",
"lessThan": "1.0.1"
},
{
"version": "1.0.1",
"status": "unaffected",
"versionType": "semver"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"lang": "en",
"description": "Deserialization of Untrusted Data",
"cweId": "CWE-502",
"type": "CWE"
}
]
}
],
"references": [
{
"url": "https://github.com/mmaitre314/picklescan/security/advisories/GHSA-m7j5-r2p5-c39r",
"name": "GHSA Advisory GHSA-m7j5-r2p5-c39r",
"tags": [
"vendor-advisory"
]
},
{
"url": "https://www.vulncheck.com/advisories/picklescan-arbitrary-file-creation-via-logging-filehandler-deserialization",
"name": "VulnCheck Advisory: picklescan - Arbitrary File Creation via logging.FileHandler Deserialization",
"tags": [
"third-party-advisory"
]
}
],
"metrics": [
{
"format": "CVSS"
},
{
"format": "CVSS",
"cvssV3_1": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
}
}
],
"credits": [
{
"lang": "en",
"value": "ez-lbz",
"type": "reporter"
}
]
}
}
}