CVE-2026-31223

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions snorkel versions prior to 0.10.1

Description Insecure deserialization occurs in the BaseLabeler.load() method of the BaseLabeler class. The method utilizes the pickle.load() function to load serialized labeler models from user-supplied file paths without validation. Because the pickle module can execute arbitrary code during the deserialization of untrusted data, a remote attacker can provide a maliciously crafted pickle file to achieve arbitrary code execution on the system.

Recommendations Update to a version later than 0.10.0. As a temporary workaround, avoid using the BaseLabeler.load() method with untrusted files.

Fix

Deserialization of Untrusted Data

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502

Related Identifiers

CVE-2026-31223

GHSA-FQ92-QC8F-482V

Affected Products

Snorkel

CVE-2026-31223

Weakness Enumeration

Related Identifiers

Affected Products

References · 4