CVE-2025-5174: 
Python vulnerability analysis and mitigation

A vulnerability was discovered in erdogant pypickle up to version 1.1.5, identified as CVE-2025-5174. The issue affects the load function in pypickle/pypickle.py and is related to insecure deserialization that could lead to remote code execution. The vulnerability was disclosed on May 16, 2025, and a fix was released in version 2.0.0 (Github Issue, NVD).

The vulnerability stems from the load() function using Python's pickle.load() without proper input validation or sanitization. This implementation allows for unsafe deserialization of untrusted data, which can lead to arbitrary code execution. The vulnerability has been assigned CVSS v3.1 Base Score of 5.3 (MEDIUM) with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L. The issue is classified under CWE-502 (Deserialization of Untrusted Data) and CWE-20 (Improper Input Validation) (NVD).

The vulnerability allows attackers to execute arbitrary code when a malicious pickle file is loaded. This can lead to remote system compromise and arbitrary command execution on the affected system. The attack requires local access to be successful (Github Issue).

The vulnerability has been fixed in pypickle version 2.0.0. The update includes several security mechanisms: implementation of validation checks for high-risk modules before loading, restrictions on save locations, and path traversal detection. Users are strongly recommended to upgrade to version 2.0.0. The patch is identified as 14b4cae704a0bb4eb6723e238f25382d847a1917 (Github Release).