CVE-2024-8088 | Python CPython up to 3.13.0 zipfile Module namelist/iterdir/extractall infinite loop (ID 122905)

Posted by Angelo Barbosa | Aug 22, 2024 | CVE

A vulnerability classified as critical was found in Python CPython up to 3.13.0. This vulnerability affects the function namelist/iterdir/extractall of the component zipfile Module. The manipulation leads to infinite loop.

This vulnerability was named CVE-2024-8088. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-8088 | Python CPython up to 3.13.0 zipfile Module namelist/iterdir/extractall infinite loop (ID 122905)

Related Posts

CVE-2023-51702 | Apache Airflow up to 2.6.0 CNCF Kubernetes Provider log file

CVE-2024-31391 | Apache Solr Operator up to 0.8.0 log file

CVE-2024-8067 | Perforce Helix up to 2024.1 Patch 1 Windows ANSI API Unicode best fit argument injection

CVE-2024-21038 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution