5 years old Python vulnerability in the tarfile module affects more than 350,000 projects

    24

    Python vulnerability in the tarfile module (CVE-2007-4559) affects more than 350,000 projectsA Python vulnerability discovered in the tarfile module impacts hundreds of thousands of open source projects, posing supply chain security concerns, according to Trellix. CVE-2007-4559, the Python vulnerability, was discovered in 2007 and is still present in the tarfile module. The Trellix Advanced Research Center uncovered the route traversal attack