Back to CVE List

CVE-2026-42448

LOW SEVERITY

CVSS Score & Metrics

Base Score

3.5 / 10

Vulnerability Description

Magic Wormhole: receive, with --output pointing at an existing directory can be path-traversed

Vulnerability Details

Published Date

May 06, 2026

Last Modified

May 06, 2026

Source

GitHub

Vendor

pip

Product

magic-wormhole

External References

Discussion (0)

Add Comment

No comments yet. Be the first!