关键信息 漏洞标题 Safe template has arbitrary filesystem read access via symlinks when 影响 Package: copier (pip) Affected versions: <9.11.2 Patched versions: 9.11.2 描述 CVE ID: CVE-2026-23968 Severity: Moderate (6.8/10) CVSS v4 base metrics Exploitability Metrics - Attack Vector: Local - Attack Complexity: Low - Attack Requirements: None - Privileges Required: None - User Interaction: Passive Vulnerable System Impact Metrics - Confidentiality: High - Integrity: None - Availability: None Subsequent System Impact Metrics - Confidentiality: None - Integrity: None - Availability: None 描述 Impact - 安全模板可能包含任意文件或目录,通过symlink读取本地文件系统。模板默认设置为 。 - 示例:恶意模板作者可以通过读取SSH密钥等敏感信息,并将生成的项目推送到公共位置以提取秘密。 复现示例 通过symlink非法包含文件或目录在生成的项目中。 工作区和修复 Workarounds: n/a Patches: n/a References: n/a