Back to overview

CVE-2026-8387

LOW Exploitation: PoC
2.4
CVSS 3.0
Description
A vulnerability in allegroai/clearml versions up to and including 1.16.5 allows for relative path traversal when extracting `.zip` archives using the `ZipFile.extractall()` method in `StorageManager._extract_to_cache()`. This issue arises due to the lack of path traversal validation, enabling an attacker to write arbitrary files to the filesystem. Attack vectors include dataset downloads, artifact downloads, model downloads, and offline session imports. The vulnerability can lead to remote code execution through methods such as cron job injection, SSH key overwrite, or web shell deployment. The issue is resolved in version 2.1.6.

Metadata

CVE ID
CVE-2026-8387
State
PUBLISHED
Assigner
@huntr_ai
Reserved
2026-05-12 11:48 UTC
Published
2026-07-01 12:26 UTC
Last updated
2026-07-01 13:36 UTC
Primary CWE
CWE-23
CWE-23 Relative Path Traversal
Vendor / Product
allegroai / allegroai/clearml
Sources
cve.org  ·  NVD

Severity & Metrics

2.4 LOW CVSS 3.0
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
SSVC — CISA Coordinator
Exploitation
PoC
Automatable
no
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
allegroai allegroai/clearml unspecified < 2.1.6
Weakness (CWE)
CWESourceDescription
CWE-23 cna CWE-23 Relative Path Traversal
CVSS scores (1)
ScoreSeverityVersionSourceVector
2.4 LOW 3.0 cna CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
Back to overview