CVE-2026-35464

EPSS 0.08%
Veröffentlicht 07.04.2026 14:38:02
Zuletzt bearbeitet 08.04.2026 21:27:15
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

pyLoad is a free and open-source download manager written in Python. The fix for CVE-2026-33509 added an ADMIN_ONLY_OPTIONS set to block non-admin users from modifying security-critical config options. The storage_folder option is not in this set and passes the existing path restriction because the Flask session directory is outside both PKGDIR and userdir. A user with SETTINGS and ADD permissions can redirect downloads to the Flask filesystem session store, plant a malicious pickle payload as a predictable session file, and trigger arbitrary code execution when any HTTP request arrives with the corresponding session cookie. This vulnerability is fixed with commit c4cf995a2803bdbe388addfc2b0f323277efc0e1.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Herstellerpyload

≫

Produkt pyload

Version <= 0.5.0b3.dev96

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.238

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	7.5	1.6	5.9	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

https://github.com/pyload/pyload/security/advisories/GHSA-r7mc-x6x7-cqxx

https://github.com/pyload/pyload/commit/c4cf995a2803bdbe388addfc2b0f323277efc0e1

https://github.com/pyload/pyload/security/advisories/GHSA-4744-96p5-mp2j

https://www.cve.org/CVERecord?id=CVE-2026-33509

https://nvd.nist.gov/vuln/detail/CVE-2026-35464

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35464

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35464

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-35464