CVE-2026-4360 | Python CPython up to 3.14.x Tarfile.extract filter permissions (ID 151987 / EUVD-2026-40336)
A vulnerability was found in Python CPython up to 3.14.x. It has been rated as critical. Affected is the function Tarfile.extract. This manipulation of the argument filter causes preservation of permissions.
This vulnerability is tracked as CVE-2026-4360. The attack is possible to be carried out remotely. No exploit exists.
Upgrading the affected component is advised.VulDB Recent EntriesRead More