CVE-2026-34591: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in python-poetry poetry
Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3.
AI Analysis
Technical Summary
python-poetry, a Python dependency manager, versions 1.4.0 through before 2.3.3 are vulnerable to a path traversal vulnerability (CWE-22) identified as CVE-2026-34591. A maliciously crafted wheel package can include '../' sequences in file paths, which Poetry writes to disk without proper containment checks. This allows an attacker to write arbitrary files anywhere the Poetry process has write permissions during normal install flows from untrusted package artifacts. While installation alone does not execute malicious code, subsequent import or invocation of the malicious package by the user can lead to code execution. The vulnerability has been addressed in Poetry version 2.3.3.
Potential Impact
An attacker can write arbitrary files to the filesystem with the privileges of the Poetry process by supplying a malicious wheel package during installation. This can lead to unauthorized file modification or creation. However, code execution requires user action to import or run the malicious package after installation. The vulnerability is rated high severity with a CVSS 4.0 score of 7.1.
Mitigation Recommendations
Upgrade python-poetry to version 2.3.3 or later, where this path traversal vulnerability has been patched. Users should avoid installing packages from untrusted sources until they have applied the update.
CVE-2026-34591: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in python-poetry poetry
Description
Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
python-poetry, a Python dependency manager, versions 1.4.0 through before 2.3.3 are vulnerable to a path traversal vulnerability (CWE-22) identified as CVE-2026-34591. A maliciously crafted wheel package can include '../' sequences in file paths, which Poetry writes to disk without proper containment checks. This allows an attacker to write arbitrary files anywhere the Poetry process has write permissions during normal install flows from untrusted package artifacts. While installation alone does not execute malicious code, subsequent import or invocation of the malicious package by the user can lead to code execution. The vulnerability has been addressed in Poetry version 2.3.3.
Potential Impact
An attacker can write arbitrary files to the filesystem with the privileges of the Poetry process by supplying a malicious wheel package during installation. This can lead to unauthorized file modification or creation. However, code execution requires user action to import or run the malicious package after installation. The vulnerability is rated high severity with a CVSS 4.0 score of 7.1.
Mitigation Recommendations
Upgrade python-poetry to version 2.3.3 or later, where this path traversal vulnerability has been patched. Users should avoid installing packages from untrusted sources until they have applied the update.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-30T17:15:52.499Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69cead0fe6bfc5ba1df180a7
Added to database: 4/2/2026, 5:53:19 PM
Last enriched: 4/9/2026, 10:42:52 PM
Last updated: 5/20/2026, 8:52:47 PM
Views: 93
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.