CVE-2024-8088 | Python CPython up to 3.13.0 zipfile Module namelist/iterdir/extractall infinite loop (ID 122905)

Posted by Angelo Barbosa | Aug 22, 2024 | CVE

A vulnerability classified as critical was found in Python CPython up to 3.13.0. This vulnerability affects the function namelist/iterdir/extractall of the component zipfile Module. The manipulation leads to infinite loop.

This vulnerability was named CVE-2024-8088. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-8088 | Python CPython up to 3.13.0 zipfile Module namelist/iterdir/extractall infinite loop (ID 122905)

Related Posts

CVE-2024-48352 | Yealink Meeting Server 26.0.0.66 Server Response Enterprise ID information disclosure

VDB-263598 | Campcodes Complete Web-Based School Management System 1.0 my_student_exam_marks1.php year cross site scripting

CVE-2024-32771 | QNAP QTS/QuTS hero/QuTScloud excessive authentication (qsa-24-28)

CVE-2023-6651 | code-projects Matrimonial Site 1.0 /auth/auth.php username sql injection