exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

CVE-2026-1703

около 2 месяцев назад

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.

EPSS: Низкий

CVE-2026-1703

около 2 месяцев назад

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.

CVSS3: 3.9

EPSS: Низкий

CVE-2026-1703

около 2 месяцев назад

When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.

EPSS: Низкий

CVE-2026-1703

около 1 месяца назад

Limited path traversal when installing wheel archives

EPSS: Низкий

CVE-2026-1703

около 2 месяцев назад

When pip is installing and extracting a maliciously crafted wheel arch ...

EPSS: Низкий

openSUSE-SU-2026:20202-1

около 2 месяцев назад

Security update for python-pip

EPSS: Низкий

SUSE-SU-2026:0805-1

24 дня назад

Security update for python-pip

EPSS: Низкий

SUSE-SU-2026:0420-1

около 2 месяцев назад

Security update for python-pip

EPSS: Низкий

GHSA-6vgw-5pg2-w6jp

около 2 месяцев назад

pip Path Traversal vulnerability

EPSS: Низкий

BDU:2026-01708

около 2 месяцев назад

Уязвимость функции commonprefix() модуля pip языка программирования Python, позволяющая нарушителю получить доступ на добавление и изменение произвольных файлов

CVSS3: 3.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.		0% Низкий	около 2 месяцев назад
CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.	CVSS3: 3.9	0% Низкий	около 2 месяцев назад
CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.		0% Низкий	около 2 месяцев назад
CVE-2026-1703 Limited path traversal when installing wheel archives		0% Низкий	около 1 месяца назад
CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel arch ...		0% Низкий	около 2 месяцев назад
openSUSE-SU-2026:20202-1 Security update for python-pip		0% Низкий	около 2 месяцев назад
SUSE-SU-2026:0805-1 Security update for python-pip		0% Низкий	24 дня назад
SUSE-SU-2026:0420-1 Security update for python-pip		0% Низкий	около 2 месяцев назад
GHSA-6vgw-5pg2-w6jp pip Path Traversal vulnerability		0% Низкий	около 2 месяцев назад
BDU:2026-01708 Уязвимость функции commonprefix() модуля pip языка программирования Python, позволяющая нарушителю получить доступ на добавление и изменение произвольных файлов	CVSS3: 3.5	0% Низкий	около 2 месяцев назад

Уязвимостей на страницу