CVE-2026-7179— OSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversal
Possible ATT&CK Techniques 1AI
T1083 · File and Directory DiscoveryGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-7179
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OSPG binwalk WinCE Extraction Plugin winceextract.py read_null_terminated_string path traversal
Source: NVD (National Vulnerability Database)
Vulnerability Description
A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function read_null_terminated_string of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.file_name leads to path traversal. The attack can only be performed from a local environment. The exploit has been disclosed publicly and may be used. The project maintainer confirms this issue: "I accept the existence of the Path Traversal vulnerability. However, as stated in the Github link, it reached EOL and as a result no actions should be expected." The GitHub repository mentions, that "[u]sers and contributors should migrate to binwalk v3." This vulnerability only affects products that are no longer supported by the maintainer.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Binwalk 路径遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Binwalk是ReFirm Labs开源的一种快速、易于使用的工具。用于分析、逆向工程和提取固件图像。 binwalk 2.4.3及之前版本存在路径遍历漏洞,该漏洞源于WinCE Extraction Plugin组件文件src/binwalk/plugins/winceextract.py中函数read_null_terminated_string对参数self.file_name操作不当,可能导致路径遍历。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-7179
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-7179
请登录查看更多情报信息。
Other · 3
- Submit #802228: OSPG binwalk (Python version) <= 2.4.3 Path Traversalthird-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-7179
IV. Related Vulnerabilities
Same weakness: CWE-22
- CVE-2026-46724
Path Traversal in extension "Faceted Search" (ke_search) - CVE-2026-29220
Apache OFBiz: Low-Privilege LFI in Content Component - CVE-2026-47091
Claude HUD 0.0.12 Path Traversal via transcript_path - CVE-2026-45230
DumbAssets 1.0.11 Path Traversal File Deletion via /api/dele - CVE-2026-8802
opensourcepos Open Source Point of Sale Items.php getPicThum
V. Comments for CVE-2026-7179
No comments yet