Impact
A relative path traversal flaw exists in the ZipFile.extractall() routine of allegroai/clearml, specifically within StorageManager._extract_to_cache(). The missing validation of ZIP entry paths allows an attacker to supply crafted archives that write files outside the intended cache directory, revealing a classic CWE‑23 vulnerability. This flaw can result in remote code execution if the attacker successfully injects executables or modifies system files such as cron jobs, SSH keys, or web application shells.
Affected Systems
Allegro AI’s ClearML product, versions up to and including 1.16.5, is affected by this path‑traversal weakness. The remediation is included in ClearML release 2.1.6 and later.
Risk and Exploitability
The CVSS score is 2.4, indicating a low severity assessment at present. EPSS is not available and the vulnerability is not listed in the CISA KEV catalog. Attackers can leverage this flaw by uploading malicious ZIP files during dataset, artifact, model, or offline session imports. Successful exploitation can create arbitrary files on the host and potentially lead to remote code execution through mechanisms such as cron job injection, SSH key overwrite, or web shell deployment, depending on the target environment’s configuration.
OpenCVE Enrichment