CVE-2026-44029

Published: Mag 05, 2026 Last Modified: Mag 05, 2026
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,3
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: none

Description

AI Translation Available

An issue was discovered in Nix before 2.34.7. Writing to arbitrary files can occur via 'nix-prefetch-url --unpack' or 'nix store prefetch-file --unpack' directory traversal. The fixed versions are 2.34.7, 2.33.6, 2.32.8, 2.31.5, 2.30.5, 2.29.4, and 2.28.7 (introduced in 2.24.7);

36

Absolute Path Traversal

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability
Potential Impacts:
Execute Unauthorized Code Or Commands Modify Files Or Directories Read Files Or Directories Dos: Crash, Exit, Or Restart
Applicable Platforms
Technologies: AI/ML, Not Technology-Specific, Web Based
View CWE Details
https://discourse.nixos.org/t/security-advisory-local-privi…
https://discourse.nixos.org/t/security-advisory-local-privilege-escalation-in-l…
https://github.com/NixOS/nix/security/advisories/GHSA-gr92-…
https://github.com/NixOS/nix/security/advisories/GHSA-gr92-w2r5-qw5p
https://www.openwall.com/lists/oss-security/2026/05/04/33
https://www.openwall.com/lists/oss-security/2026/05/04/33