# CVE-2026-6941

> Vulnerability · severity: **MEDIUM** (CVSS 6.6).

## Description

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a symlinked notes.txt that bypasses directory confinement checks, allowing note operations to follow the symlink and access arbitrary files outside the dir.projects root directory.

## Key facts

- **CVE ID:** CVE-2026-6941
- **Published:** 2026-04-23
- **CVSS severity:** MEDIUM
- **CVSS base score:** 6.6
- **CWE codes:** CWE-59, CWE-22

## Affected products

- `radare:radare2`

## Primary sources

- NIST NVD: https://nvd.nist.gov/vuln/detail/CVE-2026-6941

## Citation

> AI Analytics. CVE-2026-6941. Retrieved 2026-06-30 from https://api.ai-analytics.org/cve/CVE-2026-6941. Derived from NIST NVD. Licensed CC0.

---

*[Dataset catalog](https://api.ai-analytics.org/datasets/) · [AI Analytics](https://api.ai-analytics.org/) · CC0 1.0*