calibre: Path Traversal can Lead to Arbitrary File Write and...

9.3 / 10

CRITICAL

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Description

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Versions 9.2.1 and below are vulnerable to Path Traversal through PDB readers (both 132-byte and 202-byte header variants) that allow arbitrary file writes with arbitrary extension and arbitrary content anywhere the user has write permissions. Files are written in 'wb' mode, silently overwriting existing files. This can lead to potential code execution and Denial of Service through file corruption. This issue has been fixed in version 9.3.0.

AI Analysis

Path Traversal vulnerability allowing arbitrary file writes with arbitrary extension and content, potentially leading to code execution and Denial of Service

Basic Information

ID CVE-2026-26065

Source GitHub_M

Published Feb 20, 2026 at 01:54

Affected Product

Vendor kovidgoyal

Product calibre

Version < 9.3.0

Affected Versions kovidgoyal calibre < 9.3.0

CWE Classification

CWE-22

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor kovidgoyal

Product calibre

Version 9.2.1 and below

References

{
    "lastseen": "",
    "description": "calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Versions 9.2.1 and below are vulnerable to Path Traversal through PDB readers (both 132-byte and 202-byte header variants) that allow arbitrary file writes with arbitrary extension and arbitrary content anywhere the user has write permissions. Files are written in 'wb' mode, silently overwriting existing files. This can lead to potential code execution and Denial of Service through file corruption. This issue has been fixed in version 9.3.0.",
    "published": "2026-02-20T01:54:03.128Z",
    "modified": "2026-02-20T01:54:03.128Z",
    "type": "cve",
    "title": "calibre: Path Traversal can Lead to Arbitrary File Write and Potential Code Execution",
    "source": "GitHub_M",
    "references": "https://github.com/kovidgoyal/calibre/security/advisories/GHSA-vmfh-7mr7-pp2w\nhttps://github.com/kovidgoyal/calibre/commit/b6da1c3878c06eb1356cb0ec1106cb66e0e9bfb8",
    "id": "CVE-2026-26065",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "kovidgoyal calibre < 9.3.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "calibre",
    "version": "< 9.3.0",
    "vendor": "kovidgoyal",
    "ai_description": "Path Traversal vulnerability allowing arbitrary file writes with arbitrary extension and content, potentially leading to code execution and Denial of Service",
    "ai_severity": "Critical",
    "ai_vendor": "kovidgoyal",
    "ai_product": "calibre",
    "ai_version": "9.2.1 and below",
    "ai_score": 9.3
}

calibre: Path Traversal can Lead to Arbitrary File Write and Potential Code Execution_CVE-2026-26065