PT-2026-2232 · Fickling · Fickling
0X-Apollyon
·
Published
2026-01-09
·
Updated
2026-01-11
·
CVE-2026-22612
CVSS v4.0
9.3
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Fickling versions prior to 0.1.7
Description
Fickling, a Python pickling decompiler and static analyzer, is susceptible to a detection bypass due to a "builtins" blindness issue. This allows for potential circumvention of security measures.
Recommendations
Upgrade to version 0.1.7 or later to address this issue.
Exploit
Fix
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fickling