Description
Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3.
Published: 2026-04-02
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary file write
Action: Patch Now
AI Analysis

Impact

Poetry processes wheel files during installation. The vulnerability allows a crafted wheel to contain path components such as '..' that escape the intended extraction directory. Because Poetry lacks containment checks, it will write files to arbitrary locations on disk with the same privileges as the Poetry process. The primary impact is the ability to modify or overwrite files in the filesystem, which can lead to data corruption, privilege elevation, or facilitate subsequent payload execution if the attacker controls critical system files. The weakness is a Path Traversal flaw (CWE‑22).

Affected Systems

Python‑Poetry’s dependency manager, Poetry, is impacted. Versions starting with 1.4.0 up to, but not including, 2.3.3 are vulnerable. The issue was patched in release 2.3.3 and later. Users of any affected Poetry installation should apply the update or otherwise block untrusted wheels.

Risk and Exploitability

The CVSS score of 7.1 indicates a moderate to high severity. The EPSS score is below 1 % and the vulnerability is not listed in the CISA KEV catalog, suggesting a low probability of widespread exploitation. However, the likely attack vector is the normal package installation flow from untrusted wheel sources, which is within reach of any developer or CI environment. An attacker who can supply a malicious wheel to a Poetry installation can write arbitrary files, potentially compromising the host system if they target system‑wide or configuration files.

Generated by OpenCVE AI on April 13, 2026 at 19:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Poetry to version 2.3.3 or later.
  • Prevent installation of packages from untrusted repositories until the patch is applied.
  • Scan wheel files for '..' path components before installation or use a safe extraction tool.

Generated by OpenCVE AI on April 13, 2026 at 19:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-2599-h6xx-hpxp Poetry Has Wheel Path Traversal Which Can Lead to Arbitrary File Write
History

Mon, 13 Apr 2026 18:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:python-poetry:poetry:*:*:*:*:*:python:*:*

Sat, 04 Apr 2026 01:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}

threat_severity

Moderate

Fri, 03 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Python-poetry
Python-poetry poetry
Vendors & Products Python-poetry
Python-poetry poetry

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
Description Poetry is a dependency manager for Python. From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write with the privileges of the Poetry process. It is reachable from untrusted package artifacts during normal install flows. (Normally, installing a malicious wheel is not sufficient for execution of malicious code. Malicious code will only be executed after installation if the malicious package is imported or invoked by the user.). This issue has been patched in version 2.3.3.
Title Poetry Has Wheel Path Traversal Which Can Lead to Arbitrary File Write
Weaknesses CWE-22
References
Metrics cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Python-poetry Poetry
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-03T18:12:07.813Z

Reserved: 2026-03-30T17:15:52.499Z

Link: CVE-2026-34591

cve-icon Vulnrichment

Updated: 2026-04-02T18:29:17.877Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-02T18:16:31.163

Modified: 2026-04-13T18:38:38.063

Link: CVE-2026-34591

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-04-02T17:35:07Z

Links: CVE-2026-34591 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-14T16:41:58Z

Weaknesses