Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist

8.9 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, the unsafe_imports() method in Fickling's static analyzer fails to flag several high-risk Python modules that can be used for arbitrary code execution. Malicious pickles importing these modules will not be detected as unsafe, allowing attackers to bypass Fickling's primary static safety checks. This issue has been patched in version 0.1.7.

AI Analysis

Static Analysis Bypass via Incomplete Dangerous Module Blocklist

Basic Information

ID CVE-2026-22609

Source GitHub_M

Published Jan 10, 2026 at 01:35

Affected Product

Vendor trailofbits

Product fickling

Version < 0.1.7

Affected Versions trailofbits fickling < 0.1.7

CWE Classification

CWE-184 CWE-502

AI Assessment

AI Score 8.9 / 10

AI Severity High

Vendor Trail of Bits

Product Fickling

Version < 0.1.7

References

{
    "lastseen": "",
    "description": "Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, the unsafe_imports() method in Fickling's static analyzer fails to flag several high-risk Python modules that can be used for arbitrary code execution. Malicious pickles importing these modules will not be detected as unsafe, allowing attackers to bypass Fickling's primary static safety checks. This issue has been patched in version 0.1.7.",
    "published": "2026-01-10T01:35:18.152Z",
    "modified": "2026-01-10T01:35:18.152Z",
    "type": "cve",
    "title": "Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist",
    "source": "GitHub_M",
    "references": "https://github.com/trailofbits/fickling/security/advisories/GHSA-q5qq-mvfm-j35x\nhttps://github.com/trailofbits/fickling/commit/29d5545e74b07766892c1f0461b801afccee4f91\nhttps://github.com/trailofbits/fickling/commit/9a2b3f89bd0598b528d62c10a64c1986fcb09f66\nhttps://github.com/trailofbits/fickling/commit/b793563e60a5e039c5837b09d7f4f6b92e6040d1\nhttps://github.com/trailofbits/fickling/commit/eb299b453342f1931c787bcb3bc33f3a03a173f9\nhttps://github.com/trailofbits/fickling/releases/tag/v0.1.7",
    "id": "CVE-2026-22609",
    "bulletinFamily": "",
    "cwe": [
        "CWE-184",
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "trailofbits fickling < 0.1.7",
    "sourceHref": "",
    "cvss": {
        "score": 8.9,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "fickling",
    "version": "< 0.1.7",
    "vendor": "trailofbits",
    "ai_description": "Static Analysis Bypass via Incomplete Dangerous Module Blocklist",
    "ai_severity": "High",
    "ai_vendor": "Trail of Bits",
    "ai_product": "Fickling",
    "ai_version": "< 0.1.7",
    "ai_score": 8.9
}

Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist_CVE-2026-22609