CVE-2026-35465 | freedomofpress securedrop-client up to 0.17.4 Archive Extraction file inclusion (GHSA-2jrc-x8fq-prvc)

A vulnerability marked as problematic has been reported in freedomofpress securedrop-client up to 0.17.4. This affects an unknown part of the component Archive Extraction Handler. Performing a manipulation results in file inclusion.

This vulnerability was named CVE-2026-35465. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More