Critical Path Traversal Vulnerability in Unstructured.io Library

Critical Path Traversal Vulnerability in Unstructured.io Library

First seen 13 Feb 2026, 16:10 UTC Scworld 100% similarity 36.8

Article Content

Browse articles
ThreatCluster

A critical vulnerability in the Unstructured.io library has been identified, allowing for arbitrary file writes due to a path traversal flaw. This issue affects the Unstructured.io ETL product, which processes unstructured data formats like PDFs and emails. The vulnerability was revealed by Cyera on February 13, 2026, and is associated with CVE-2025-64712, published on February 4, 2026.

ThreatCluster AI

Timeline

2026-02-04
CVE-2025-64712 published
2026-02-13
Cyera reveals critical vulnerability in Unstructured.io

Community

Browse all →