Directory Traversal Vulnerability in Python's Tarfile Module
CVE-2026-7774

6.9MEDIUM

Key Information:

Status
Vendor
CVE Published:
4 June 2026

What is CVE-2026-7774?

The vulnerability in the Tarfile module allows attackers to craft tar archives with symlinks that have empty or directory-like names, potentially redirecting extracted files to locations outside the intended directory. This could result in unexpected file system modifications based on the permissions of the process performing the extraction. The affected functionality, tarfile.extractall(), may inadvertently allow malicious content to disrupt the integrity of a system when untrusted archives are processed.

Affected Version(s)

CPython 0 < 3.13.14

CPython 3.14.0 < 3.14.6

CPython 3.15.0a1 < 3.15.0b2

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Phùng Siêu Đạt (OPSWAT Unit 515)
Seth Larson (https://github.com/sethmlarson)
Gregory P. Smith (https://github.com/gpshead)
Petr Viktorin (https://github.com/encukou)
Stan Ulbrych (https://github.com/StanFromIreland)
.