Threats Tagged 'cve-2026-10732'
View all threats tagged with 'cve-2026-10732'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-10732'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-10732: Arbitrary File Write via Archive Extraction (Zip Slip) in decompressCVE-2026-10732 0 The decompress package is vulnerable to an arbitrary file write vulnerability via ZIP archive extraction, known as Zip Slip. This occurs when a ZIP archive contains two entries with the same path: the first is a symlink to an arbitrary target, and the second is a regular file. Due to the order of microtask processing, the file content is written through the symlink to a location outside the intended output directory. This vulnerability bypasses existing path traversal protections, including those added for a previous related vulnerability (CVE-2020-12265). Exploitation could allow an attacker to write arbitrary files on the host filesystem, potentially leading to remote code execution. The CVSS 4. 0 base score is 6. 1, indicating medium severity. No official patch or remediation guidance is currently available. Join the discussion | CVE Database V5 | 06/05/2026, 05:00:02 UTC Added: 06/05/2026, 06:33:38 UTC |
Showing 1 to 1 of 1 result