CVE-2025-4138 — Vulnetix

CVE-2025-4138 PUBLISHED

EPSS 0.27% · 50.9th percentile

Risk Scores

EPSS Score

0.27%

50.9th percentile

Affected Products

Vendor	Product	Versions
Amazon	python3.9
Amazon	python3.11
Amazon	python3.12

Exploit Intelligence

CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)
CVE-2025-4138 / CVE-2025-4517 — Python tarfile PATH_MAX Symlink Filter Bypass (github-poc-repo)

…and 147 more exploits

Timeline

Jan 21, 1970 Fix PR Merged
Jan 21, 1970 GitHub Gist PoC
Jun 3, 2025 Coalition ESS Score
Jun 3, 2025 Coalition ESS Score
Jun 3, 2025 CVE Published
Jun 4, 2025 EPSS Score
Jun 4, 2025 Coalition ESS Score
Jun 10, 2025 Coalition ESS Score
Jun 15, 2025 EPSS Score
Jun 25, 2025 EPSS Score
Jul 6, 2025 EPSS Score
Jul 17, 2025 EPSS Score

References

ALAS2023-2025-1044: python3.12 (important) advisory
ALAS2023-2025-1045: python3.11 (important) advisory
ALAS2023-2025-1046: python3.9 (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›