CVE-2026-5659 | pytries datrie up to 0.8.3 trie File src/datrie.pyx Trie.load/Trie.read/Trie.setstate deserialization (Issue 109)

Inserito da Angelo Barbosa | Apr 6, 2026 | CVE

A vulnerability categorized as critical has been discovered in pytries datrie up to 0.8.3. The affected element is the function Trie.load/Trie.read/Trie.__setstate__ of the file src/datrie.pyx of the component trie File Handler. The manipulation results in deserialization.

This vulnerability is reported as CVE-2026-5659. The attack can be launched remotely. Moreover, an exploit is present.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-5659 | pytries datrie up to 0.8.3 trie File src/datrie.pyx Trie.load/Trie.read/Trie.__setstate__ deserialization (Issue 109)

Post correlati

CVE-2024-36550 | idcCMS 1.35 vpsCompany_deal.php cross-site request forgery

CVE-2023-52121 | NitroPack Cache & Speed Optimization for Core Web Vitals, Defer CSS & JavaScript, Lazy load Images Plugin cross-site request forgery

CVE-2024-7480 | Avaya Aura System Manager 10.1.x.x/10.2.x.x Command-Line Interface privileges management

CVE-2025-64509 | Bugsink up to 2.0.5 Decompression allocation of resources (GHSA-rrx3-2x4g-mq2h)

CVE-2026-5659 | pytries datrie up to 0.8.3 trie File src/datrie.pyx Trie.load/Trie.read/Trie.setstate deserialization (Issue 109)