ModelScan Bypass PoC โ distutils.core.run_setup
Security research for responsible disclosure via Huntr MFV program.
Vulnerability
distutils.core.run_setup not in modelscan blocklist. Reports "No issues found" but triggers FULL RCE via exec() on arbitrary setup.py file. VERIFIED: writes files, executes commands..
Impact: CRITICAL
Reproduction
pip install modelscan && modelscan scan -p bypass_poc.pkl
# "No issues found!"
Inference Providers NEW
This model isn't deployed by any Inference Provider. ๐ Ask for provider support