CVE-2026-34783HIGH 8.1EPSS p39.6%

CVE-2026-34783CVE-2026-34783

Description

Ferret is a declarative system for working with web data. Prior to 2.0.0-alpha.4, a path traversal vulnerability in Ferret's IO::FS::WRITE standard library function allows a malicious website to write arbitrary files to the filesystem of the machine running Ferret. When an operator scrapes a website that returns filenames containing ../ sequences, and uses those filenames to construct output paths (a standard scraping pattern), the attacker controls both the destination path and the file content. This can lead to remote code execution via cron jobs, SSH authorized_keys, shell profiles, or web shells. This vulnerability is fixed in 2.0.0-alpha.4.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
EPSS0.51% probability of exploitation · percentile 39.6% · 2026-06-19T12:03:05Z
Published2026-04-06
Last modified2026-04-14

Underlying weaknesses· 2

CWE-22CWE-73

References

  1. https://github.com/MontFerret/ferret/commit/160ebad6bd50f153453e120f6d909f5b83322917
  2. https://github.com/MontFerret/ferret/security/advisories/GHSA-j6v5-g24h-vg4j
  3. https://github.com/MontFerret/ferret/security/advisories/GHSA-j6v5-g24h-vg4j

2

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live
WeaknessExternal Control of File Name or Pathcwe-730%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-54769
CVE
CVE-2026-44716
CVE
Apache HTTP Server Path Traversal Vulnerability
CVE
CVE-2026-6057
CVE
CVE-2026-25776
CVE
CVE-2026-25895
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.