Name of the Vulnerable Software and Affected Versions: Flask-Caching versions through 1.10.1

Description: The issue allows for remote code execution or local privilege escalation due to the reliance on Pickle for serialization. An attacker who gains access to cache storage, such as filesystem, Memcached, or Redis, can construct a crafted payload to poison the cache and execute Python code.

Recommendations: For versions through 1.10.1, consider disabling the use of Pickle for serialization until a patch is available. Restrict access to cache storage to minimize the risk of exploitation. Avoid using vulnerable cache configurations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.