CVE-2025-69872

Published: Feb 11, 2026

Modified: Feb 12, 2026

PUBLISHED

Description

DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve arbitrary code execution when a victim application reads from the cache.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/grantjenks/python-diskcache

https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69872-DiskCache-Pickle-Deserialization.md

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-69872

Description

Affected Products

References