Sign In

CVE-2025-69872

ADVISORY - github

Summary

DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve arbitrary code execution when a victim application reads from the cache.

EPSS Score: 0.00041 (0.128)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-94

Improper Control of Generation of Code ('Code Injection')

ADVISORY - github

CWE-502

Deserialization of Untrusted Data

CWE-94

Improper Control of Generation of Code ('Code Injection')

ADVISORY - redhat

CWE-502

Deserialization of Untrusted Data

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in