A vulnerability classified as critical has been found in Python CPython up to 3.14.0b1. Affected is the function
TarFile.extractall/TarFile.extract
. The manipulation leads to path traversal.
This vulnerability is traded as CVE-2024-12718. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.