GHSA-89gg-p5r5-q6r4: MONAI: Unsafe functions lead to pickle deserialization rce

April 7, 2026

The algo_from_pickle function in monai/auto3dseg/utils.py causes pickle.loads(data_bytes) to be executed, and it does not perform any validation on the input parameters. This ultimately leads to insecure deserialization and can result in code execution vulnerabilities.

References

github.com/Project-MONAI/MONAI
github.com/Project-MONAI/MONAI/releases/tag/1.5.2
github.com/Project-MONAI/MONAI/security/advisories/GHSA-89gg-p5r5-q6r4
github.com/advisories/GHSA-89gg-p5r5-q6r4

Code Behaviors & Features

Detect and mitigate GHSA-89gg-p5r5-q6r4 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →