Pypa Wheel vulnerabilities

1 known vulnerability affecting pypa/wheel.

Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2026-24049MEDIUMCVSS 5.5v>= 0.40.0, < 0.46.22026-01-22
CVE-2026-24049 [MEDIUM] CWE-22 CVE-2026-24049: wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. In versions wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. In versions 0.40.0 through 0.46.1, the unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the e
nvd
Pypa Wheel vulnerabilities | cvebase