HIGHCVE-2026-3029Published Modified CNA certcc
CVE-2026-3029: CVE-2026-3029
A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in PyMuPDF version, 1.26.5.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 1.26.7
- Affected Products
- 1
Fix available
1.26.7
Affected packages
- Artifex Software Inc. *PyMuPDF* / PyMuPDF< 1.26.7 (from 1.26.5)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HReferences