A vulnerability labeled as problematic has been found in pip up to 26.0 . Affected by this vulnerability is an unknown functionality of the component Self-update Check . Such manipulation leads to Local Privilege Escalation. This vulnerability is referenced as CVE-2026-6357 . The attack can only be performed from a local environment. No exploit is available. The affected component should be upgraded.