Hugging Face's logo

manja316
/
modelscan-bypass-atexit-deferred

PyTorch
security-research
modelscan-bypass
Model card Files
xet
 Community

Modelscan Bypass PoC: atexit deferred RCE with _run_exitfuncs

Security research only. Do not use for malicious purposes.

Summary

Variant using atexit._run_exitfuncs() to force immediate execution of exit-registered functions. Demonstrates deferred execution class of bypass.

Reproduction 

pip install modelscan
modelscan scan -p pytorch_model.bin
# Result: No issues found

python3 -c "import pickle; pickle.load(open('pytorch_model.bin', 'rb'))"
# Result: Code executes

Affected

  • modelscan 0.7.6 (latest as of 2026-04-11)

Disclosure

Submitted to ProtectAI via Huntr.

Downloads last month

-

Downloads are not tracked for this model. How to track
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support