Vulnerabilities in magic-wormhole

2 results

CVE-2026-32116HIGHMagic Wormhole: "wormhole receive" allows arbitrary local file overwriteEPSS 0.4%CVE-2026-42448LOWwormhole receive, with --output pointing at an existing directory can be path-traversedEPSS 0.2%