Boltz Insecure Deserialization Vulnerability Leading to Arbitrary Code Execution

Vulnerability

A vulnerability allowing insecure deserialization has been identified in Boltz version 2.0.0, specifically within its molecule loading feature. The application utilizes Python's pickle module to deserialize molecule data files without proper validation. This flaw enables an attacker to execute arbitrary code by placing a malicious pickle file in a directory that Boltz processes, as the application will execute the code contained in the file upon loading it.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the system where Boltz is running.

Added: Feb 3, 2026, 6:29 PM

Updated: Feb 3, 2026, 6:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.9

remediation

0.0

relevance

2.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.9

remediation

0.0

relevance

2.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Boltz Insecure Deserialization Vulnerability Leading to Arbitrary Code Execution

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating