PT-2026-24643 · Mageia · Yt-Dlp
Published
2026-03-10
·
Updated
2026-03-10
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
When yt-dlp's --netrc-cmd command-line option (or netrc cmd Python API
parameter) is used, an attacker could achieve arbitrary command
injection on the user's system with a maliciously crafted URL.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Yt-Dlp