Fickling has missing detection for marshal.loads and types.FunctionType in unsafe...

7.1 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

Fickling is a Python pickling decompiler and static analyzer. Versions prior to 0.1.6 are missing `marshal` and `types` from the block list of unsafe module imports. Fickling started blocking both modules to address this issue. This allows an attacker to craft a malicious pickle file that can bypass fickling since it misses detections for `types.FunctionType` and `marshal.loads`. A user who deserializes such a file, believing it to be safe, would inadvertently execute arbitrary code on their system. This impacts any user or system that uses Fickling to vet pickle files for security issues. The issue was fixed in version 0.1.6.

Basic Information

ID CVE-2025-67747

Source GitHub_M

Published Dec 16, 2025 at 00:32

Affected Product

Vendor trailofbits

Product fickling

Version < 0.1.6

Affected Versions trailofbits fickling < 0.1.6

CWE Classification

CWE-184 CWE-502

References

{
    "lastseen": "",
    "description": "Fickling is a Python pickling decompiler and static analyzer. Versions prior to 0.1.6 are missing `marshal` and `types` from the block list of unsafe module imports. Fickling started blocking both modules to address this issue. This allows an attacker to craft a malicious pickle file that can bypass fickling since it misses detections for `types.FunctionType` and `marshal.loads`. A user who deserializes such a file, believing it to be safe, would inadvertently execute arbitrary code on their system. This impacts any user or system that uses Fickling to vet pickle files for security issues. The issue was fixed in version 0.1.6.",
    "published": "2025-12-16T00:32:52.714Z",
    "modified": "2025-12-16T00:32:52.714Z",
    "type": "cve",
    "title": "Fickling has missing detection for marshal.loads and types.FunctionType in unsafe modules list",
    "source": "GitHub_M",
    "references": "https://github.com/trailofbits/fickling/security/advisories/GHSA-565g-hwwr-4pp3\nhttps://github.com/trailofbits/fickling/pull/186\nhttps://github.com/trailofbits/fickling/commit/4e34561301bda1450268d1d7b0b2b151de33b913\nhttps://github.com/trailofbits/fickling/releases/tag/v0.1.6",
    "id": "CVE-2025-67747",
    "bulletinFamily": "",
    "cwe": [
        "CWE-184",
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "trailofbits fickling < 0.1.6",
    "sourceHref": "",
    "cvss": {
        "score": 7.1,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "fickling",
    "version": "< 0.1.6",
    "vendor": "trailofbits",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Fickling has missing detection for marshal.loads and types.FunctionType in unsafe modules list_CVE-2025-67747