Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-62239— FlashAttention Symlink Attack via tarfile.extractall in hopper/setup.py

CVSS 6.6 · Medium EPSS 0.13% · P3

Affected Version Matrix 2

VendorProductVersion RangeStatus
Dao-AILabflash-attention≤ 2.8.3.post1affected
0816ef12f424c6ec94b057a72c275b14f6e6edb2unaffected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-62239

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
FlashAttention Symlink Attack via tarfile.extractall in hopper/setup.py
Source: NVD (National Vulnerability Database)
Vulnerability Description
FlashAttention through 2.8.3.post1, fixed in commit 0816ef1, contains a symlink attack vulnerability in the download_and_copy() function within hopper/setup.py that extracts NVIDIA toolchain archives without validating symlinks or filtering tar members. A local attacker can pre-plant a symlink in the predictable cache directory to redirect extracted binaries to an attacker-chosen location, enabling arbitrary file write with victim privileges during build time.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Dao AI Lab FlashAttention 后置链接漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Dao AI Lab FlashAttention是Dao AI Lab团队开源的一个高效且节省内存的注意力机制实现工具。 Dao AI Lab FlashAttention 2.8.3.post1及之前版本存在后置链接漏洞,该漏洞源于hopper/setup.py中的download_and_copy()函数在提取NVIDIA toolchain归档时未验证symlink或过滤tar成员,本地攻击者可在可预测缓存目录中预置symlink,将提取的二进制文件重定向到攻击者选择的位置,从而在构建期间以受害者
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Dao-AILabflash-attention 0 ~ 2.8.3.post1 -

II. Public POCs for CVE-2026-62239

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-62239

登录查看更多情报信息。

Patches & Fixes for CVE-2026-62239 (2)

Vendor Advisories for CVE-2026-62239 (1)

Proof of Concept for CVE-2026-62239 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2026-62239

No comments yet


Leave a comment