Количество 3
Количество 3
CVE-2026-1703
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
CVE-2026-1703
When pip is installing and extracting a maliciously crafted wheel arch ...
GHSA-6vgw-5pg2-w6jp
pip Path Traversal vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations. | 0% Низкий | 7 дней назад | |
| CVE-2026-1703 When pip is installing and extracting a maliciously crafted wheel arch ... | 0% Низкий | 7 дней назад | |
| GHSA-6vgw-5pg2-w6jp pip Path Traversal vulnerability | 0% Низкий | 7 дней назад |
Уязвимостей на страницу