CVE-2026-1703
published 2026-02-02CVE-2026-1703: When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is…
PriorityP416low2CVSS 4.0
AVNACLATPPRLUIAVCNVILVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.39%
30.8th percentile
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dbt-labs | dbt-common | >= 0 < 1.34.2 | 1.34.2 |
| dbt-labs | dbt-common | >= 1.35.0 < 1.37.3 | 1.37.3 |
| debian | python-pip | < python-pip 26.0+dfsg-1 (forky) | python-pip 26.0+dfsg-1 (forky) |
| msrc | azl3_python-virtualenv_20.36.1-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_python-virtualenv_20.36.1-2_on_azure_linux_3.0 | — | — |
| pypa | pip | >= 0 < 26.0 | 26.0 |
| python_packaging_authority | pip | < 26.0 | 26.0 |
CVSS provenance
nvdv4.02.0LOWCVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
ghsa2.0LOW
osv2.0LOW
vendor_redhat5.0MEDIUM
vendor_debian2.0LOW
vendor_msrc2.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
freerdp: FreeRDP: Denial of Service via missing bounds check in smartcard redirection
vendor_redhat·2026-02-25·CVSS 5.0
CVE-2026-27015 [MEDIUM] CWE-120 freerdp: FreeRDP: Denial of Service via missing bounds check in smartcard redirection
freerdp: FreeRDP: Denial of Service via missing bounds check in smartcard redirection
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unpack_read_size_align()` (`libfreerdp/utils/smartcard_pack.c:1703`) allows a malicious RDP server to crash the FreeRDP client via a reachable `WINPR_ASSERT` → `abort()`. The crash occurs in upstream builds where `WITH_VERBOSE_WINPR_ASSERT=ON` (default in FreeRDP 3.22.0 / current WinPR CMake defaults). Smartcard redirection must be explicitly enabled by the user (e.g., `xfreerdp /smartcard`; `/smartcard-logon` implies `/smartcard`). Version 3.23.0 fixes the issue.
A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A malicious Remote Desktop Protoc
Microsoft
Limited path traversal when installing wheel archives
vendor_msrc·2026-02-10·CVSS 2.0
CVE-2026-1703 [LOW] CWE-22 Limited path traversal when installing wheel archives
Limited path traversal when installing wheel archives
Mariner: Mariner
PSF: PSF
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade
Red Hat
pip: pip: Information disclosure via path traversal when installing crafted wheel archives
vendor_redhat·2026-02-02·CVSS 2.0
CVE-2026-1703 [LOW] CWE-22 pip: pip: Information disclosure via path traversal when installing crafted wheel archives
pip: pip: Information disclosure via path traversal when installing crafted wheel archives
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
A flaw was found in pip. A remote attacker could exploit this path traversal vulnerability by tricking a user into installing a maliciously crafted wheel archive. This could lead to files being extracted outside the intended installation directory, potentially disclosing sensitive information.
Statement: This LOW impact flaw in pip allows information disclosure via path traversal when installing crafted wheel archive
Debian
CVE-2026-1703: python-pip - When pip is installing and extracting a maliciously crafted wheel archive, files...
vendor_debian·2026·CVSS 2.0
CVE-2026-1703 [LOW] CVE-2026-1703: python-pip - When pip is installing and extracting a maliciously crafted wheel archive, files...
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
Scope: local
bookworm: open
bullseye: open
forky: resolved (fixed in 26.0+dfsg-1)
sid: resolved (fixed in 26.0+dfsg-1)
trixie: open
OSV
dbt-common's commonprefix() doesn't protect against path traversal
osv·2026-03-05·CVSS 2.0
CVE-2026-29790 [LOW] dbt-common's commonprefix() doesn't protect against path traversal
dbt-common's commonprefix() doesn't protect against path traversal
### Impact
_What kind of vulnerability is it? Who is impacted?_
A path traversal vulnerability exists in dbt-common's `safe_extract()` function used when extracting tarball archives. The function uses `os.path.commonprefix()` to validate that extracted files remain within the intended destination directory. However, `commonprefix()` compares paths character-by-character rather than by path components, allowing a malicious tarball to write files to sibling directories with matching name prefixes.
For example, when extracting to `/tmp/packages`, a crafted tarball could write files to `/tmp/packagesevil/` by exploiting the character-based prefix matching.
This vulnerability affects users who:
- Install dbt packages from un
GHSA
dbt-common's commonprefix() doesn't protect against path traversal
ghsa·2026-03-05·CVSS 2.0
CVE-2026-29790 [LOW] CWE-22 dbt-common's commonprefix() doesn't protect against path traversal
dbt-common's commonprefix() doesn't protect against path traversal
### Impact
_What kind of vulnerability is it? Who is impacted?_
A path traversal vulnerability exists in dbt-common's `safe_extract()` function used when extracting tarball archives. The function uses `os.path.commonprefix()` to validate that extracted files remain within the intended destination directory. However, `commonprefix()` compares paths character-by-character rather than by path components, allowing a malicious tarball to write files to sibling directories with matching name prefixes.
For example, when extracting to `/tmp/packages`, a crafted tarball could write files to `/tmp/packagesevil/` by exploiting the character-based prefix matching.
This vulnerability affects users who:
- Install dbt packages from un
GHSA
pip Path Traversal vulnerability
ghsa·2026-02-02
CVE-2026-1703 [LOW] CWE-22 pip Path Traversal vulnerability
pip Path Traversal vulnerability
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
OSV
pip Path Traversal vulnerability
osv·2026-02-02
CVE-2026-1703 [LOW] pip Path Traversal vulnerability
pip Path Traversal vulnerability
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
OSV
CVE-2026-1703: When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory
osv·2026-02-02·CVSS 2.0
CVE-2026-1703 [LOW] CVE-2026-1703: When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-1703 pip: pip: Information disclosure via path traversal when installing crafted wheel archives
bugzilla·2026-02-02·CVSS 2.0
CVE-2026-1703 [LOW] CVE-2026-1703 pip: pip: Information disclosure via path traversal when installing crafted wheel archives
CVE-2026-1703 pip: pip: Information disclosure via path traversal when installing crafted wheel archives
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
Wiz
CVE-2026-1703 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.0
CVE-2026-1703 [LOW] CVE-2026-1703 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-1703 :
Python vulnerability analysis and mitigation
When pip is installing and extracting a maliciously crafted wheel archive, files may be extracted outside the installation directory. The path traversal is limited to prefixes of the installation directory, thus isn't able to inject or overwrite executable files in typical situations.
Source : NVD
## 2
Score
Published February 2, 2026
Severity LOW
CNA Score 2.0
Affected Technologies
Python
CBL Mariner
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 5.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
rhel9/python-311
ubi9/python-39
Sources
NVD
CBL-Mariner 3.0 Severity LOW Has Fix Added at: Mar 13
2026-02-02
Published