Fickling vulnerable to use of ctypes and pydoc gadget chain...

8.9 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes and pydoc modules aren't explicitly blocked. Even other existing pickle scanning tools (like picklescan) do not block pydoc.locate. Chaining these two together can achieve RCE while the scanner still reports the file as LIKELY_SAFE. This issue has been patched in version 0.1.7.

AI Analysis

Fickling is vulnerable to a gadget chain attack using ctypes and pydoc, allowing for remote code execution (RCE) while being reported as LIKELY_SAFE by the scanner.

Basic Information

ID CVE-2026-22608

Source GitHub_M

Published Jan 10, 2026 at 01:35

Affected Product

Vendor trailofbits

Product fickling

Version < 0.1.7

Affected Versions trailofbits fickling < 0.1.7

CWE Classification

CWE-184 CWE-502

AI Assessment

AI Score 8.9 / 10

AI Severity High

Vendor Trail of Bits

Product Fickling

Version < 0.1.7

References

{
    "lastseen": "",
    "description": "Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes and pydoc modules aren't explicitly blocked. Even other existing pickle scanning tools (like picklescan) do not block pydoc.locate. Chaining these two together can achieve RCE while the scanner still reports the file as LIKELY_SAFE. This issue has been patched in version 0.1.7.",
    "published": "2026-01-10T01:35:11.291Z",
    "modified": "2026-01-10T01:35:11.291Z",
    "type": "cve",
    "title": "Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection",
    "source": "GitHub_M",
    "references": "https://github.com/trailofbits/fickling/security/advisories/GHSA-5hvc-6wx8-mvv4\nhttps://github.com/trailofbits/fickling/commit/b793563e60a5e039c5837b09d7f4f6b92e6040d1\nhttps://github.com/trailofbits/fickling/releases/tag/v0.1.7",
    "id": "CVE-2026-22608",
    "bulletinFamily": "",
    "cwe": [
        "CWE-184",
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "trailofbits fickling < 0.1.7",
    "sourceHref": "",
    "cvss": {
        "score": 8.9,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "fickling",
    "version": "< 0.1.7",
    "vendor": "trailofbits",
    "ai_description": "Fickling is vulnerable to a gadget chain attack using ctypes and pydoc, allowing for remote code execution (RCE) while being reported as LIKELY_SAFE by the scanner.",
    "ai_severity": "High",
    "ai_vendor": "Trail of Bits",
    "ai_product": "Fickling",
    "ai_version": "< 0.1.7",
    "ai_score": 8.9
}

Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection_CVE-2026-22608