CVE-2021-47952
published 2026-05-16CVE-2021-47952: python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious…
PriorityP259critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.70%
48.3th percentile
python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Attackers can craft JSON strings with py/repr directives that invoke the eval function during deserialization to execute arbitrary code.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ansible-automation-platform-24 | lightspeed-rhel8 | — | — |
| ansible-automation-platform-25 | lightspeed-rhel8 | — | — |
| jsonpickle | python_jsonpickle | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Look for JSON payloads containing 'py/repr' keys being passed to jsonpickle deserialization functions, which can trigger eval-based code execution ↗
- →Monitor for jsonpickle decode/unpickle calls processing untrusted input containing 'py/repr' objects, as these trigger arbitrary Python command execution ↗
- →Alert on eval() invocations originating from jsonpickle deserialization code paths, particularly when processing externally supplied JSON ↗
- ·Affected version is jsonpickle 2.0.0 specifically; verify deployed version before applying detections ↗
- ·Red Hat Ansible Automation Platform 2 packages (lightspeed-rhel8 for both AAP 2.4 and 2.5) are confirmed NOT affected ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Jsonpickle python jsonpickle 2.0.0 eval code injection (Exploit 49585)
vuldb·2026-05-16·CVSS 9.3
CVE-2021-47952 [CRITICAL] Jsonpickle python jsonpickle 2.0.0 eval code injection (Exploit 49585)
A vulnerability described as critical has been identified in Jsonpickle python jsonpickle 2.0.0. The affected element is the function eval. Executing a manipulation can lead to code injection.
This vulnerability appears as CVE-2021-47952. The attack may be performed from remote. In addition, an exploit is available.
GHSA
GHSA-gv3j-fjgf-469v: python jsonpickle 2
ghsa_unreviewed·2026-05-16
CVE-2021-47952 [CRITICAL] CWE-94 GHSA-gv3j-fjgf-469v: python jsonpickle 2
python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Attackers can craft JSON strings with py/repr directives that invoke the eval function during deserialization to execute system commands and arbitrary code.
Red Hat
python-jsonpickle: python-jsonpickle: Arbitrary Code Execution via Malicious JSON Deserialization
vendor_redhat·2026-05-16·CVSS 9.3
CVE-2021-47952 [CRITICAL] CWE-502 python-jsonpickle: python-jsonpickle: Arbitrary Code Execution via Malicious JSON Deserialization
python-jsonpickle: python-jsonpickle: Arbitrary Code Execution via Malicious JSON Deserialization
python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Attackers can craft JSON strings with py/repr directives that invoke the eval function during deserialization to execute system commands and arbitrary code.
A flaw was found in python-jsonpickle. A remote attacker can exploit this vulnerability by crafting and sending malicious JSON payloads. When these payloads, which contain specially crafted py/repr objects, are deserialized, they can trigger the execution of arbitrary Python commands and system commands. This can lead to arbitrary code execut
No detection rules found.
No public exploits indexed.
https://github.com/jsonpickle/jsonpicklehttps://jsonpickle.github.iohttps://www.exploit-db.com/exploits/49585https://www.vulncheck.com/advisories/python-jsonpickle-remote-code-execution-via-py-reprhttps://access.redhat.com/security/cve/CVE-2021-47952https://bugzilla.redhat.com/show_bug.cgi?id=2478170https://security.access.redhat.com/data/csaf/v2/vex/2021/cve-2021-47952.json
2026-05-16
Published