Ixtli logoIxtli
← Feed/CVE-2026-24049
HIGHCVE-2026-24049PyPICVSS 7.1

wheel

Published

Description

Wheel Affected by Arbitrary File Permission Modification via Path Traversal in wheel unpack

Affected Versions

>=0.40.0
FIXED VERSIONS0.46.2

References

WEBhttps://github.com/pypa/wheel/security/advisories/GHSA-8rrh-rw8j-w5fxADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-24049WEBhttps://github.com/pypa/wheel/commit/7a7d2de96b22a9adf9208afcc9547e1001569fefWEBhttps://github.com/pypa/wheel/commit/934fe177ff912c8e03d5ae951d3805e1fd90ba5ePACKAGEhttps://github.com/pypa/wheelWEBhttps://github.com/pypa/wheel/releases/tag/0.46.2

Using wheel?

Scan your dependencies and detect this automatically on every PR.

Create free account