Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Versions 0.0.41 through 0.0.93 have a vulnerabilit…

CVE-2025-62373 affects Pipecat versions 0.0.41 through 0.0.93, an open-source Python framework for building real-time voice and multimodal conversational agents. The vulnerability exists in the LivekitFrameSerializer class which uses unsafe pickle.loads() deserialization on WebSocket data without validation. Attackers can send malicious pickle payloads to achieve remote code execution on servers using this component. The vulnerable code is in src/pipecat/serializers/livekit.py around line 73. Version 0.0.94 contains a fix. The affected component is optional, non-default, and now deprecated.