Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2026/02/03 12:24 a.m.6 views

SUSE CVE-2026-1703

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations...

3.1CVSS5.4AI score0.0039EPSS
Exploits1References9
OSV
OSV
added 2026/02/02 3:16 p.m.6 views

AZL-76599 CVE-2026-1703 affecting package python3 3.12.9-9

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations...

2CVSS5.7AI score0.0039EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/02 2:43 p.m.5 views

CVE-2026-1703

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations...

2CVSS5.4AI score0.0039EPSS
Exploits1References4
OSV
OSV
added 2026/02/02 2:43 p.m.6 views

CVE-2026-1703 Limited path traversal when installing wheel archives

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations...

2CVSS6.3AI score0.0039EPSS
Exploits1References7
Rows per page
Query Builder