Threats Tagged 'cve-2026-29051'
View all threats tagged with 'cve-2026-29051'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-29051'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-29051: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in chainguard-dev melangeCVE-2026-29051 0 CVE-2026-29051 is a path traversal vulnerability in chainguard-dev's melange versions from 0. 32. 0 up to but not including 0. 43. 4. When the --persist-lint-results flag is used, melange constructs output file paths from unvalidated values in the APK's . PKGINFO file, allowing an attacker supplying a malicious APK to cause melange to write JSON lint reports to arbitrary filesystem locations. This can overwrite existing JSON files but does not allow direct code execution. The vulnerability only affects deployments explicitly using the --persist-lint-results option, which is off by default. The issue is fixed in version 0. Join the discussion | CVE Database V5 | 04/24/2026, 00:00:36 UTC Added: 04/24/2026, 00:21:53 UTC |
Showing 1 to 1 of 1 result