Primary

Context

Snorkel Library Insecure Deserialization Vulnerability in BaseLabeler Class Allowing Arbitrary Code Execution

Vulnerability

A critical insecure deserialization vulnerability has been identified in the Snorkel library, affecting versions through 0.10.0. The issue resides in the BaseLabeler.load() method, where serialized labeler models are loaded using the unsafe pickle.load() function. This process occurs without any validation or security controls, allowing remote attackers to exploit the vulnerability by providing maliciously crafted pickle files. When these files are loaded via the vulnerable method, they can execute arbitrary code on the victim's system.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the system where the vulnerable Snorkel library is used.

Remediation

Users can upgrade to Snorkel version 0.10.1 or later to address this vulnerability.

Added: May 12, 2026, 4:26 PM

Updated: May 12, 2026, 4:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.7

remediation

0.0

relevance

8.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.7

remediation

0.0

relevance

8.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Snorkel Library Insecure Deserialization Vulnerability in BaseLabeler Class Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

snorkel-team snorkel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating