CVE ID : CVE-2024-21542

Published : Dec. 10, 2024, 5:15 a.m. | 1 hour, 2 minutes ago

Description : Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) due to improper destination file path validation in the _extract_packages_archive function.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…