关键信息 漏洞标题 - Boltz contains an insecure deserialization vulnerability in its molecule loading functionality CVE ID - CVE-2025-70560 GHSA ID - GHSA-fjm6-8xp2-4fwc 严重程度 - High - CVSS v3 base metrics: AV=L/AC=L/PR=N/UI=N/S:U/C:H/I:H/A:H - CVSS score: 8.4/10 影响版本 - <= 2.0.0 修复版本 - Non 漏洞描述 - Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achieve arbitrary code execution when the file is loaded. 相关弱点 - CWE-502 参考资料 - https://nvd.nist.gov/vuln/detail/CVE-2025-70560 - jwohlwend/boltz#200 - https://github.com/jwohlwend/boltz/blob/cb04aeeccd480fd4db707f0bbafde538397fa2ac/src/boltz/data/mol.py#L80