CVE-2026-22612 | trailofbits fickling up to 0.1.6 deserialization (GHSA-h4rm-mm56-xf63)

January 10, 2026 Yanac

A vulnerability classified as critical was found in trailofbits fickling up to 0.1.6. This impacts an unknown function. Such manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2026-22612. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More

CVE-2026-22702 | pypa virtualenv up to 20.36.0 app_data/lock link following (GHSA-597g-3phw-6986)
CVE-2026-22691 | py-pdf pypdf up to 6.5.x PDF File Parser redos (GHSA-4f6g-68pf-7vhv)