CVE-2026-33155
HIGHDeepDiff has Memory Exhaustion DoS through SAFE_TO_IMPORT
Title source: cnaDescription
DeepDiff is a project focused on Deep Difference and search of any Python data. From version 5.0.0 to before version 8.6.2, the pickle unpickler _RestrictedUnpickler validates which classes can be loaded but does not limit their constructor arguments. A few of the types in SAFE_TO_IMPORT have constructors that allocate memory proportional to their input (builtins.bytes, builtins.list, builtins.range). A 40-byte pickle payload can force 10+ GB of memory, which crashes applications that load delta objects or call pickle_load with untrusted data. This issue has been patched in version 8.6.2.
References (2)
Core 2
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/qlustered/deepdiff/security/advisories/GHSA-54jj-px8x-5w5q
X_Refsource_Misc x_refsource_misc
https://github.com/qlustered/deepdiff/commit/0d07ec21d12b46ef4e489383b363eadc22d990fb
Scores
CVSS v3
7.5
EPSS
0.0045
EPSS Percentile
35.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-400
CWE-770
Status
published
Products (3)
pypi/deepdiff
5.0.0 - 8.6.2PyPI
qluster/deepdiff
5.0.0 - 8.6.2
seperman/deepdiff
>= 5.0.0, < 8.6.2
Published
Mar 20, 2026
Tracked Since
Mar 21, 2026