The CVE documents a bypass of the tarfile.data_filter mechanism, allowing crafted tar archives that include specially formed link entries—such as symlinks with empty or directory‑like names—to redirect subsequent archive members outside the specified extraction directory. This vulnerability exemplifies CWE-22 Path Traversal and CWE-59 Absolute Path Traversal, enabling attackers to dictate where files are written. When extractall() is called, these redirected members can be written to any location the extracting process can access, resulting in an arbitrary file write that may expose or overwrite critical system files.

The flaw is present in the CPython implementation of the tarfile module supplied by the Python Software Foundation. Any CPython release that has not yet been updated to include the patch referenced in the Python issue tracker is vulnerable. Specific version numbers are not listed, so all affected releases should be treated as at risk until an official fix is applied.

Based on the description, the likely attack vector is delivering a malicious tar archive to a process that invokes tarfile.extractall(). The CVSS score of 6.9 indicates a moderate severity, and the EPSS score of < 1% signals a low probability of exploitation. The vulnerability is not listed in CISA’s KEV catalog. Attackers can exploit this by providing a crafted archive that includes specially formed link entries; when extractall() processes those entries, the bypassed data_filter allows the archive to write files outside the destination directory. If the extracting process has elevated privileges, e.g., root or a user directory that permits writing system files, it can create or overwrite arbitrary files outside the intended extraction tree. The attack requires control over the archive contents, but otherwise has no additional prerequisites beyond the use of tarfile.extractall().