CVE Catalog

CVE-2026-7774

MediumCVSS 6.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.62%

46th percentile - higher than 46% of all known CVEs

Summary

A vulnerability in the tarfile module allows bypassing the data filter using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outside the intended extraction directory. A malicious tar archive can cause tarfile.extractall() to write files outside the destination directory, subject to the permissions of the extracting process.

Risk Assessment

The organization is at risk of overwriting or creating files in unauthorized filesystem locations, potentially leading to privilege escalation, code injection, or data integrity compromise.

Recommendation

Immediately update the Python library to a version containing the fix for CVE-2026-7774 and consider using safer extraction methods, such as explicit path validation.

Original NVD description (English source)

tarfile.data_filter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outside the intended extraction directory. This allowed a malicious tar archive to cause tarfile.extractall() to write files outside the destination directory, subject to the permissions of the extracting process.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS