CVE-2026-22606— Fickling has a bypass via runpy.run_path() and runpy.run_module()
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-22606
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Fickling has a bypass via runpy.run_path() and runpy.run_module()
Source: NVD (National Vulnerability Database)
Vulnerability Description
Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including 0.1.6 do not treat Python’s runpy module as unsafe. Because of this, a malicious pickle that uses runpy.run_path() or runpy.run_module() is classified as SUSPICIOUS instead of OVERTLY_MALICIOUS. If a user relies on Fickling’s output to decide whether a pickle is safe to deserialize, this misclassification can lead them to execute attacker-controlled code on their system. This affects any workflow or product that uses Fickling as a security gate for pickle deserialization. This issue has been patched in version 0.1.7.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
不完整的黑名单
Source: NVD (National Vulnerability Database)
Vulnerability Title
Fickling 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Fickling是Trail of Bits开源的一个Python的反编译器和静态分析器。 Fickling 0.1.6及之前版本存在代码问题漏洞,该漏洞源于未将runpy模块标记为不安全,可能导致执行攻击者控制的代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| trailofbits | fickling | < 0.1.7 | - |
II. Public POCs for CVE-2026-22606
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-22606
请登录查看更多情报信息。
Same Patch Batch · trailofbits · 2026-01-10 · 5 CVEs total
| CVE-2026-22607 | Fickling Blocklist Bypass: cProfile.run() | |
| CVE-2026-22612 | Fickling vulnerable to detection bypass due to "builtins" blindness | |
| CVE-2026-22608 | Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection | |
| CVE-2026-22609 | Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist |
IV. Related Vulnerabilities
Same product: fickling
- CVE-2026-22612
Fickling vulnerable to detection bypass due to "builtins" bl - CVE-2026-22609
Fickling has Static Analysis Bypass via Incomplete Dangerous - CVE-2026-22608
Fickling vulnerable to use of ctypes and pydoc gadget chain - CVE-2026-22607
Fickling Blocklist Bypass: cProfile.run() - CVE-2025-67748
Fickling has Code Injection vulnerability via pty.spawn()
Same vendor: trailofbits
- CVE-2026-33753
Improper Certificate Validation in rfc3161-client - CVE-2026-22612
Fickling vulnerable to detection bypass due to "builtins" bl - CVE-2026-22609
Fickling has Static Analysis Bypass via Incomplete Dangerous - CVE-2026-22608
Fickling vulnerable to use of ctypes and pydoc gadget chain - CVE-2026-22607
Fickling Blocklist Bypass: cProfile.run()
Same weakness: CWE-184
- CVE-2026-44115
OpenClaw < 2026.4.22 - Shell Expansion Bypass in Unquoted He - CVE-2026-44114
OpenClaw < 2026.4.20 - Environment Variable Namespace Collis - CVE-2026-43584
OpenClaw < 2026.4.10 - Insufficient Environment Variable Den - CVE-2026-43578
OpenClaw 2026.3.31 < 2026.4.10 - Privilege Escalation via Mi - CVE-2026-41934
Vvveb < 1.0.8.2 Authenticated RCE via Code Editor
V. Comments for CVE-2026-22606
No comments yet