pkg:PyPI/poetry

8 total CVEsCRITICAL2HIGH4MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2022-26184Poetry before v1.1.9 contains Untrusted Search Path
    from 0, < 1.1.9
  • CRITICAL9.8CVE-2022-26184Poetry before v1.1.9 contains Untrusted Search Path
    from 0, < 1.1.9
  • HIGH7.3CVE-2022-36070Poetry vulnerable to Untrusted Search Path leading to Local Code Execution on Windows
    from 0, < 1.1.9
  • HIGH7.3CVE-2022-36070Poetry vulnerable to Untrusted Search Path leading to Local Code Execution on Windows
    from 0, < 1.1.9
  • HIGH7.3CVE-2022-36069Poetry Argument Injection can lead to Local Code Execution
    from 0, < 1.1.9
  • HIGH7.3CVE-2022-36069Poetry Argument Injection can lead to Local Code Execution
    from 0, < 1.1.9
  • MEDIUM6.5CVE-2026-34591Poetry Has Wheel Path Traversal Which Can Lead to Arbitrary File Write
    >= 1.4.0, < 2.3.3
  • CVE-2026-41140Poetry has Path Traversal in tar extraction on Python 3.10.0 - 3.10.12 and 3.11.0 - 3.11.4
    from 0, < 2.3.4