VYPR
High severity8.8OSV Advisory· Published Dec 12, 2024· Updated Apr 15, 2026

CVE-2024-55587

CVE-2024-55587

Description

python-libarchive through 4.2.1 allows directory traversal (to create files) in extract in zip.py for ZipFile.extractall and ZipFile.extract.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
python-libarchivePyPI
<= 4.2.1

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.