Primary

Context

Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in Upsonic, specifically within the add_tool endpoint, which defaults to TCP port 7541. This issue arises from inadequate validation of user-supplied data, allowing for the deserialization of untrusted data. As a result, remote attackers can execute arbitrary code on affected installations, with no authentication required, in the context of the service account.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system, executed under the service account's privileges.

Remediation

The primary mitigation strategy is to limit interactions with the Upsonic application.

Added: Jan 23, 2026, 4:31 AM

Updated: Jan 23, 2026, 4:31 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating