Mmaitre314

**Name of the Vulnerable Software and Affected Versions** Picklescan version 0.0.24 and earlier **Description** The issue arises from the unsafe globals in Picklescan not including ssl, allowing `ssl.get server certificate` to exfiltrate data via DNS after deserialization. **Recommendations** For Picklescan version 0.0.24 and earlier, update to version 0.0.25 or later to secure your application. As a temporary workaround, consider restricting the use of `ssl.get server certificate` until a patch is applied.