Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2021-20193)

A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability. This plugin only works with Tenable.ot. Please vis...

Linux Distros Unpatched Vulnerability : CVE-2021-20193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled...

CVE-2022-20193

In getUniqueUsagesWithLabels of PermissionUsageHelper.java, there is a possible incorrect permission attribution due to a logic error in the code. This could lead to local escalation of privilege by conflating apps with User execution privileges needed. User interaction is needed for...

CVE-2017-20193

The Product Vendors is vulnerable to Reflected Cross-Site Scripting via the 'vendordescription' parameter in versions up to, and including, 2.0.35 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

ROS-2-514

2.514 Memory Leak in GNU Tar CVE-2021-20193 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a DoS attack on a target system. The vulnerability exists due to a memory leak in the readheader function in list.c. A remote attacker could pass a specially crafted...

CVE-2025-20193

creationtimestamp| type| source ---|---|--- 2025-05-07 18:23:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15379 2025-05-07 21:26:25+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lomdjtysaya2...

CVE-2017-20193

creationtimestamp| type| source ---|---|--- 2024-10-16 11:20:56+00:00| seen| https://t.me/cvedetector/8039...

RHEL 8 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: null-pointer dereference in paxdecodeheader in sparse.c CVE-2019-9923 - In GNU tar before 1.35,...

Cisco Identity Services Engine Privilege Escalation CVE-2023-20193 (cisco-sa-ise-priv-esc-KJLp2Aw)

According to its self-reported version, Cisco Identity Services Engine is affected by a privilege escalation vulnerability that allows an authenticated, Administrator-level attacker to read, write and delete arbitrary files and elevate their privileges to root due to improper privilege management...

CVE-2023-20193

creationtimestamp| type| source ---|---|--- 2023-09-08 01:01:14+00:00| seen| https://t.me/cibsecurity/70112...

CVE-2023-20193

Summary: CVE-2023-20193 affects Cisco Identity Services Engine (ISE) via the Embedded Service Router (ESR). The vulnerability stems from improper privilege management in the ESR console, enabling an authenticated, local attacker (with Administrator-level privileges) to read, write, or delete arbi...

ROS-2-1237

2.1237 Memory Leak in GNU Tar CVE-2021-20193 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a DoS attack on a target system. The vulnerability exists due to a memory leak in the readheader function in list.c. A remote attacker could pass a specially crafted...

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2023-1297)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.2 : tar (EulerOS-SA-2023-1297)

According to the versions of the tar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar t...

CVE-2022-20193

creationtimestamp| type| source ---|---|--- 2022-06-15 18:26:21+00:00| seen| https://t.me/cibsecurity/44520...

CVE-2022-20193

In getUniqueUsagesWithLabels of PermissionUsageHelper.java, there is a possible incorrect permission attribution due to a logic error in the code. This could lead to local escalation of privilege by conflating apps with User execution privileges needed. User interaction is needed for...

CVE-2022-20193

Summary: CVE-2022-20193 affects Android 12L, in getUniqueUsagesWithLabels of PermissionUsageHelper.java, where a logic error could cause incorrect permission attribution. This may allow local escalation of privilege by conflating apps with User execution privileges. Impact : requires user interac...

USN-5329-1: tar vulnerability | Cloud Foundry

Severity Low Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that tar incorrectly handled certain files. An attacker could possibly use this issue to cause tar to crash, resulting in a denial of service. CVEs contained in this...

openSUSE: Security Advisory for tar (SUSE-SU-2022:1548-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED15 / SLES15 Security Update : tar (SUSE-SU-2022:1548-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1548-1 advisory. - GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows loca...