NVD - CVE-2026-34591 (original) (raw)
Description
Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3.
Metrics
NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:
NIST: NVD
NVD assessment not yet provided.
CNA: GitHub, Inc.
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
CVSS 3.x Severity and Vector Strings:
NIST: NVD
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CVSS 2.0 Severity and Vector Strings:
NIST: NVD
Base Score: N/A
NVD assessment not yet provided.
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].
| URL | Source(s) | Tag(s) |
|---|---|---|
| http://github.com/python-poetry/poetry/commit/ed59537ac3709cfbdbf95d957de801c13872991a | GitHub, Inc. | Patch |
| https://github.com/python-poetry/poetry/pull/10792 | GitHub, Inc. | Issue Tracking Patch |
| https://github.com/python-poetry/poetry/releases/tag/2.3.3 | GitHub, Inc. | Product Release Notes |
| https://github.com/python-poetry/poetry/security/advisories/GHSA-2599-h6xx-hpxp | CISA-ADP, GitHub, Inc. | Exploit Vendor Advisory |
Weakness Enumeration
| CWE-ID | CWE Name | Source |
|---|---|---|
| CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | GitHub, Inc. |
Known Affected Software Configurations Switch to CPE 2.2
Change History
3 change records found show changes
Initial Analysis by NIST 4/13/2026 2:38:38 PM
| Action | Type | Old Value | New Value |
|---|---|---|---|
| Added | CVSS V3.1 | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N | |
| Added | CPE Configuration | OR *cpe:2.3:a:python-poetry:poetry:*:*:*:*:*:python:*:* versions from (including) 1.4.0 up to (excluding) 2.3.3 | |
| Added | Reference Type | CISA-ADP: https://github.com/python-poetry/poetry/security/advisories/GHSA-2599-h6xx-hpxp Types: Exploit, Vendor Advisory | |
| Added | Reference Type | GitHub, Inc.: http://github.com/python-poetry/poetry/commit/ed59537ac3709cfbdbf95d957de801c13872991a Types: Patch | |
| Added | Reference Type | GitHub, Inc.: https://github.com/python-poetry/poetry/pull/10792 Types: Issue Tracking, Patch | |
| Added | Reference Type | GitHub, Inc.: https://github.com/python-poetry/poetry/releases/tag/2.3.3 Types: Product, Release Notes | |
| Added | Reference Type | GitHub, Inc.: https://github.com/python-poetry/poetry/security/advisories/GHSA-2599-h6xx-hpxp Types: Exploit, Vendor Advisory |
CVE Modified by CISA-ADP 4/03/2026 3:17:22 PM
| Action | Type | Old Value | New Value |
|---|---|---|---|
| Added | Reference | https://github.com/python-poetry/poetry/security/advisories/GHSA-2599-h6xx-hpxp |
New CVE Received from GitHub, Inc. 4/02/2026 2:16:31 PM
| Action | Type | Old Value | New Value |
|---|---|---|---|
| Added | Description | Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3. | |
| Added | CVSS V4.0 | AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X | |
| Added | CWE | CWE-22 | |
| Added | Reference | http://github.com/python-poetry/poetry/commit/ed59537ac3709cfbdbf95d957de801c13872991a | |
| Added | Reference | https://github.com/python-poetry/poetry/pull/10792 | |
| Added | Reference | https://github.com/python-poetry/poetry/releases/tag/2.3.3 | |
| Added | Reference | https://github.com/python-poetry/poetry/security/advisories/GHSA-2599-h6xx-hpxp |