Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2021-37713

๐Ÿ—“๏ธย 31 Aug 2021ย 17:08:15Reported byย [email protected]Typeย 
nvd
ย nvd๐Ÿ”—ย web.nvd.nist.gov๐Ÿ‘ย 19ย Views

npm package "tar" has arbitrary file creation/overwrite and code execution vulnerability. Inadequate path sanitization on Windows systems. Upgrade to versions 4.4.18, 5.0.10, or 6.1.9

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Veracode		Remote Code Execution (RCE)
1 Sep 202102:04
โ€“veracode
RedhatCVE		CVE-2021-37713
16 Dec 202116:50
โ€“redhatcve
IBM Security Bulletins		Security Bulletin: A security vulnerability in Node.js tar module affects IBM Cloud Pak for Multicloud Management Managed Services
9 Nov 202118:09
โ€“ibm
IBM Security Bulletins		Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - Node.js (CVE-2021-37713)
22 Apr 202219:42
โ€“ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Node.js affect IBM Integration Bus v10 (CVE-2021-37713)
2 Dec 202118:18
โ€“ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities affect IBM Rationalยฎ Application Developer for WebSphereยฎ Software - September 2021
16 Nov 202119:44
โ€“ibm
IBM Security Bulletins		Security Bulletin: Open Source Dependency Vulnerability
15 May 202318:33
โ€“ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in Node.js affect IBM Rational Application Developer for WebSphere Software included in Rational Developer for i
12 Dec 202119:49
โ€“ibm
IBM Security Bulletins		Security Bulletin: IBM QRadar Deployment Intelligence app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
24 May 202218:37
โ€“ibm
IBM Security Bulletins		Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities
23 Nov 202115:54
โ€“ibm
Rows per page
Nvd
Node
npmjstarRange<4.4.18node.js
OR
npmjstarRange5.0.0โ€“5.0.10node.js
OR
npmjstarRange6.0.0โ€“6.1.9node.js
AND
microsoftwindowsMatch-
Node
oraclegraalvmMatch20.3.3enterprise
OR
oraclegraalvmMatch21.2.0enterprise
Node
siemenssinec_infrastructure_network_servicesRange<1.0.1.1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
31 Aug 2021 17:15Current
CVSS24.4
CVSS38.6
EPSS0.00938
CWE-22
npmpackagetararbitrary file creationarbitrary code executionvulnerabilitypath sanitizationwindowsupgradeversions 4.4.185.0.106.1.9
19
.json
Report