Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/05/15 4:4 p.m.5 views

EUVD-2026-30559

Microsoft APM is an open-source, community-driven dependency manager for AI agents. Prior to 0.13.0, Microsoft APM contains a Windows-specific archive extraction boundary failure in the legacy-bundle probe used by apm install on supported Python 3.10 and 3.11 runtimes. When apm install is given a...

5.5CVSS5.8AI score0.00055EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/07 12:0 a.m.1 views

PT-2026-2101

Name of the Vulnerable Software and Affected Versions MONAI versions up to and including 1.5.1 Description MONAI Medical Open Network for AI is an AI toolkit for health care imaging. A Path Traversal Zip Slip issue exists in the download from ngc private function. This function utilizes...

5.3CVSS6.5AI score0.00022EPSS
Exploits1References7
RedHat Linux
RedHat Linuxadded 2025/07/08 11:17 a.m.5 views

cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory

A flaw was found in the Python tarfile module. This vulnerability allows attackers to bypass extraction filters, enabling symlink targets to escape the destination directory and allowing unauthorized modification of file metadata via the use of TarFile.extract or TarFile.extractall with the filte...

7.5CVSS6.6AI score0.00273EPSS
Exploits7References10
OSV
OSVadded 2014/02/20 4:55 p.m.4 views

AZL-6651 CVE-2013-4420 affecting package libtar for versions less than 1.2.20-8

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

5.8CVSS6.6AI score0.00376EPSS
Exploits0References1
OSV
OSVadded 2014/02/20 4:55 p.m.1 views

DEBIAN-CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

5.8CVSS5.5AI score0.00376EPSS
Exploits0References1
OSV
OSVadded 2014/02/20 4:55 p.m.3 views

AZL-34945 CVE-2013-4420 affecting package libtar for versions less than 1.2.20-11

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

5.8CVSS6.6AI score0.00376EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2014/02/20 12:0 a.m.1 views

PT-2014-2786 · None +1 · Libtar +1

Name of the Vulnerable Software and Affected Versions: libtar versions 1.2.20 and earlier Description: The issue concerns multiple directory traversal vulnerabilities in the tar extract glob and tar extract all functions. These vulnerabilities allow remote attackers to overwrite arbitrary files b...

9.1CVSS8AI score0.00376EPSS
Exploits0References26
Microsoft KB
Microsoft KBadded 1970/01/01 12:0 a.m.5 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder