CVE-2025-66221: Werkzeug safe_join() allows Windows special device names

Overview

Severity

N/A

Exploit Status

Not Exploited

Patch Tuesday

2025-Nov

Released

2025-12-03

Last Updated

2025-12-09

EPSS Score

0.03% (percentile: 9.2%)

Affected Products (3)

Other

• 19693-17084
• 19712-17086
• 17667-17084

Revision History

• 2025-12-03: Information published.
• 2025-12-09: Information published.