CVE-2025-55671: TkEasyGUI Affected by Uncontrolled Search Path Element Issue

September 5, 2025

Uncontrolled search path element issue exists in TkEasyGUI versions prior to v1.0.22. If this vulnerability is exploited, arbitrary code may be executed with the privilege of running the program.

References

github.com/advisories/GHSA-ph2w-cx28-vhrq
github.com/kujirahand/tkeasygui-python
github.com/kujirahand/tkeasygui-python/releases/tag/v1.0.22
jvn.jp/en/jp/JVN48739895
nvd.nist.gov/vuln/detail/CVE-2025-55671

Code Behaviors & Features

Detect and mitigate CVE-2025-55671 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →