CVE-2026-3087 | Python CPython ZIP Archive shutil.unpack_archive path traversal (ID 146581)

A vulnerability was found in Python CPython. It has been classified as critical. Affected is the function shutil.unpack_archive of the component ZIP Archive Handler. This manipulation causes path traversal.

This vulnerability is registered as CVE-2026-3087. Remote exploitation of the attack is possible. No exploit is available.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More