gdown Affected by Arbitrary File Write via Path Traversal in...

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Description

gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the archive members. This allow files to be written outside the intended destination directory, potentially leading to arbitrary file overwrite and Remote Code Execution (RCE). Version 5.2.2 contains a fix.

Basic Information

ID CVE-2026-40491

Source GitHub_M

Published Apr 18, 2026 at 01:36

Affected Product

Vendor wkentaro

Product gdown

Version < 5.2.2

Affected Versions wkentaro gdown < 5.2.2

CWE Classification

CWE-22

References

{
    "lastseen": "",
    "description": "gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the archive members. This allow files to be written outside the intended destination directory, potentially leading to arbitrary file overwrite and Remote Code Execution (RCE). Version 5.2.2 contains a fix.",
    "published": "2026-04-18T01:36:47.659Z",
    "modified": "2026-04-18T01:36:47.659Z",
    "type": "cve",
    "title": "gdown Affected by Arbitrary File Write via Path Traversal in gdown.extractall",
    "source": "GitHub_M",
    "references": "https://github.com/wkentaro/gdown/security/advisories/GHSA-76hw-p97h-883f\nhttps://github.com/wkentaro/gdown/commit/af569fc6ed300b7974dee66dc51e9f01b57b4dff\nhttps://github.com/wkentaro/gdown/releases/tag/v5.2.2",
    "id": "CVE-2026-40491",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "wkentaro gdown < 5.2.2",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "gdown",
    "version": "< 5.2.2",
    "vendor": "wkentaro",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

gdown Affected by Arbitrary File Write via Path Traversal in gdown.extractall_CVE-2026-40491