{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-31048", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-13T18:59:05.727Z", "dateReserved": "2026-03-09T00:00:00.000Z", "datePublished": "2026-04-13T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-13T18:59:05.727Z"}, "descriptions": [{"lang": "en", "value": "An issue in the <code>pickle</code> protocol of Pyro v3.x allows attackers to execute arbitrary code via supplying a crafted pickled string message."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/irmen/Pyro3/blob/master/Pyro/protocol.py#L672-L711"}, {"url": "https://github.com/irmen/Pyro3/blob/master/docs/9-security.html#L341-L346"}, {"url": "https://github.com/Sif-0x01/security-advisories/security/advisories/GHSA-7625-w9h5-83rv"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}}, "dataVersion": "5.2"}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An issue in the <code>pickle</code> protocol of Pyro v3.x allows attackers to execute arbitrary code via supplying a crafted pickled string message."}], "id": "CVE-2026-31048", "lastModified": "2026-04-13T20:16:33.410", "metrics": {}, "published": "2026-04-13T20:16:33.410", "references": [{"source": "cve@mitre.org", "url": "https://github.com/Sif-0x01/security-advisories/security/advisories/GHSA-7625-w9h5-83rv"}, {"source": "cve@mitre.org", "url": "https://github.com/irmen/Pyro3/blob/master/Pyro/protocol.py#L672-L711"}, {"source": "cve@mitre.org", "url": "https://github.com/irmen/Pyro3/blob/master/docs/9-security.html#L341-L346"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Received"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[3.0.0,4.0.0)"}}], "enrichment": {"confidence": 90.0, "confidence_source": "inferred", "scores": [{"score": 90.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "pyro3", "vendor": "irmen"}], "analysis": {"en": {"generated_at": "2026-04-13T20:53:02.632634+00:00", "value": {"mitigation_remediation": ["Upgrade Pyro to a patched version that eliminates unsafe pickle usage", "Validate or reject pickled payloads before deserialization, or switch to a safer serialization format", "Apply network segmentation or firewall rules to restrict external access to Pyro endpoints"], "summary": {"action": "Patch immediately", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Pyro v3.x is an RPC framework for Python. Systems running any Pyro v3.x deployment that accepts pickled messages from untrusted sources are affected. The vulnerability exists in the pickle protocol handling implemented in the Pyro library, without any specific version range provided; users should assume all releases of Pyro v3.x are at risk until an update is released.", "description_and_impact": "An attacker can supply a maliciously crafted pickled string to Pyro v3.x, which the library deserializes using the Python pickle protocol without validation. Deserialization triggers execution of arbitrary code embedded in the payload, giving the attacker full control over the target process. This results in potential compromise of confidentiality, integrity, and availability.", "risk_and_exploitability": "The CVSS score is not publicly available, but the nature of the flaw\u2014arbitrary code execution\u2014implies a high severity rating. There is currently no EPSS score or entry in the CISA KEV catalog, yet the attack vector is remote and requires only that the target service accept a malicious pickled payload. If such a payload is transmitted by an attacker with network access, exploitation is trivial and immediate. Because the deserialization occurs before any authentication, the risk remains significant for any service that blindly accepts and deserializes pickled objects."}}}}, "created": "2026-04-14T16:21:45.684864+00:00", "title": "Arbitrary Code Execution via Pickle Deserialization in Pyro v3.x", "updated": "2026-04-14T16:35:36.781089+00:00", "vendors": ["irmen", "irmen$PRODUCT$pyro3"], "weaknesses": ["CWE-502"]}