This ancient, unpatched Python vulnerability could put thousands of projects at risk

A fairly old, unpatched Python vulnerability has reappeared, causing researchers to warn that hundreds of thousands of projects could be vulnerable to code execution.

Trellix cybersecurity researchers do recently spotted (opens in a new tab) CVE-2007-4559, a vulnerability in Python’s tarfile, first discovered in 2007.

Leave a Reply

Your email address will not be published. Required fields are marked *