A vulnerability was detected in yzhao062 pyod 3.5.0/3.5.1/3.5.2. Affected is the function pyod.utils.persistence.load of the file pyod/utils/persistence.py. Performing a manipulation of the argument path results in deserialization. The attack can be initiated remotely. The pull request to fix this issue requires some minor changes.
Metrics
Affected Vendors & Products
References
History
Mon, 13 Jul 2026 04:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was detected in yzhao062 pyod 3.5.0/3.5.1/3.5.2. Affected is the function pyod.utils.persistence.load of the file pyod/utils/persistence.py. Performing a manipulation of the argument path results in deserialization. The attack can be initiated remotely. The pull request to fix this issue requires some minor changes. | |
| Title | yzhao062 pyod persistence.py pyod.utils.persistence.load deserialization | |
| First Time appeared |
Yzhao062
Yzhao062 pyod |
|
| Weaknesses | CWE-20 CWE-502 |
|
| CPEs | cpe:2.3:a:yzhao062:pyod:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Yzhao062
Yzhao062 pyod |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-13T03:45:08.697Z
Reserved: 2026-07-12T15:47:24.318Z
Link: CVE-2026-15529
No data.
No data.
No data.
OpenCVE Enrichment
No data.