cvedb.io
CVE-2024-6829
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2025-03-20T10:15:33.487 · Last modified 2026-06-17T08:18:47.830

Summary

A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to exploit the `tarfile.extractall()` function to extract the contents of a maliciously crafted tarfile to arbitrary locations on the host server. The attacker can control `repo.path` and `run_hash` to bypass directory existence checks and extract files to unintended locations, potentially overwriting critical files. This can lead to arbitrary data being written to arbitrary locations on the remote tracking server, which could be used for further attacks such as writing a new SSH key to the target server.

Affected products

aimstack — aim

Does this affect you?

Add your gear to cvedb and we'll alert you only when aimstack ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.