CVE-2026-31048

CRITICAL

Pyro v3.x - Remote Code Execution via Pickle Deserialization

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-31048. PoCs published by Sif-0x01.

AI-analyzed exploit summary The repository contains only a minimal README with a title and no technical details or exploit code. It is a placeholder with no actionable content.

Description

An issue in the <code>pickle</code> protocol of Pyro v3.x allows attackers to execute arbitrary code via supplying a crafted pickled string message.

Exploits (1)

nomisec STUB

by Sif-0x01 · poc

https://github.com/Sif-0x01/security-advisories

View Code ZIP pw:eip

The repository contains only a minimal README with a title and no technical details or exploit code. It is a placeholder with no actionable content.

Classification

Stub 100%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Apr 28, 2026 Full analysis →

References (3)

Core 3

Core References

https://github.com/irmen/Pyro3/blob/master/Pyro/protocol.py#L672-L711

View Writeup ZIP pw:eip

https://github.com/irmen/Pyro3/blob/master/docs/9-security.html#L341-L346

View Writeup ZIP pw:eip

https://github.com/Sif-0x01/security-advisories/security/advisories/GHSA-7625-w9h5-83rv

Scores

CVSS v3 9.8

EPSS 0.0010

EPSS Percentile 27.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-94

Status published

Published Apr 13, 2026

Tracked Since Apr 14, 2026