Home/Tag/Pickle Deserialization

Pickle Deserialization

1 article tagged with "Pickle Deserialization"

Vulnerabilities5 min read

One Researcher, Four Critical RCE Bugs in AI Frameworks

Security researcher Valentin Lobstein discovers CVSS 9.8 pickle deserialization vulnerabilities in LeRobot, ktransformers, and LightLLM. ML frameworks using pickle for network serialization create widespread attack surface.

Marcus ChenApr 26, 2026