CVE-2026-6968

Published
View on NVD ↗
CVSS v3
5.9
MEDIUM
CVSS v2
N/A
Affected
3
PROJECTS

Description

Incomplete path traversal fixes in awslabs/tough before tough-v0.22.0 allow remote authenticated users with delegated signing authority to write files outside intended output directories via absolute target names in copy_target/link_target, symlinked parent directories in save_target, or symlinked metadata filenames in SignedRole::write, because write paths trust the joined destination path without post-resolution containment verification. We recommend you upgrade to tough-v0.22.0 / tuftool-v0.15.0.

awslabs/tough
awslabs/tough
Rust libraries and tools for using and generating TUF repositories
GitHubGitHub
224
tough
tough
The Update Framework (TUF) repository client
Crates.ioCrates.io
1.67M
tuftool
tuftool
Utility for creating and signing The Update Framework (TUF) repositories
Crates.ioCrates.io
412K