Lucene search
K

13 matches found

OSV
OSV
added 2026/05/22 8:55 p.m.9 views

OSEC-2026-08 Path traversal vulnerability in ocaml-tar

A malicious archive with ../ path segments in its name allows escaping the current working directory. This is not desired behavior, and tar1 rejects such extractions, but ocaml-tar decompresses it anyway. The impact is that it allows arbitrary file write outside of the desired extraction director...

8.2CVSS6AI score0.00373EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/12 5:21 a.m.16 views

CVE-2026-41530

The automatic folder creation feature of Lhaz and Lhaz+ provided by Chitora soft contains a path traversal vulnerability. When the affected product is configured with the automatic folder creation feature enabled, and a product user tries to extract an archive file which has a crafted file name,...

4.6CVSS5.8AI score0.0015EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/25 6:0 a.m.6 views

CVE-2026-2343

The PeproDev Ultimate Invoice WordPress plugin through 2.2.5 has a bulk download invoices action that generates ZIP archives containing exported invoice PDFs. The ZIP files are named predictably making it possible to brute force and retreive PII...

5.8AI score0.00197EPSS
Exploits0References1
Veracode
Veracode
added 2026/01/23 9:52 a.m.9 views

Path Traversal

wheel is vulnerable to Path Traversal.The vulnerability is due to unsafe handling of file permissions during wheel extraction, where the unpack function trusts archive header filenames when applying chmod, allowing a malicious wheel to modify permissions of arbitrary system files after path...

7.1CVSS5.6AI score0.00311EPSS
Exploits2References48Affected Software1
OSV
OSV
added 2023/05/24 7:15 p.m.4 views

CVE-2023-2868

A remote command injection vulnerability exists in the Barracuda Email Security Gateway appliance form factor only product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file tape archives. The vulnerability ste...

9.8CVSS7.6AI score0.86956EPSS
Exploits3References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.4 views

SUSE CVE-2010-0624

Heap-based buffer overflow in the rmtread function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service memory corruption or possibly execute arbitrary code by sending more data than was requested,...

6.8CVSS8.3AI score0.04747EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:54 a.m.3 views

SUSE CVE-2016-10100

Borg aka BorgBackup before 1.0.9 has a flaw in the way duplicate archive names were processed during manifest recovery, potentially allowing an attacker to overwrite an archive...

5.3CVSS6.9AI score0.0107EPSS
Exploits0References3
Veracode
Veracode
added 2017/01/03 5:3 a.m.18 views

Arbitrary Archive File Overwrite

Borg aka BorgBackup has a flaw in the way of processing duplicate archive names during manifest recovery. When rebuilding the manifest which should only be needed very rarely, duplicate archive names would be handled on a "first come first serve" basis, allowing an attacker to arbitrarily overwri...

5.3CVSS5.2AI score0.0107EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/01/02 9:59 p.m.10 views

CVE-2016-10100

Borg aka BorgBackup before 1.0.9 has a flaw in the way duplicate archive names were processed during manifest recovery, potentially allowing an attacker to overwrite an archive...

5.3CVSS5.2AI score0.0107EPSS
Exploits0References2
CVE
CVE
added 2017/01/02 9:9 p.m.47 views

CVE-2016-10100

The CVE-2016-10100 issue affects BorgBackup (Borg) prior to 1.0.9, caused by how duplicate archive names were processed during manifest recovery. This could allow an attacker to overwrite an existing archive when the manifest is rebuilt. The available connected documents confirm the flaw and iden...

5.3CVSS5.1AI score0.0107EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/01/02 9:9 p.m.17 views

CVE-2016-10100

Borg aka BorgBackup before 1.0.9 has a flaw in the way duplicate archive names were processed during manifest recovery, potentially allowing an attacker to overwrite an archive...

5.2AI score0.0107EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2010/03/16 12:47 a.m.4 views

cpio: Heap-based buffer overflow by expanding a specially-crafted archive

Heap-based buffer overflow in the rmtread function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service memory corruption or possibly execute arbitrary code by sending more data than was requested,...

6.8CVSS7.8AI score0.04747EPSS
Exploits2References4
OSV
OSV
added 2010/03/15 1:28 p.m.2 views

DEBIAN-CVE-2010-0624

Heap-based buffer overflow in the rmtread function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service memory corruption or possibly execute arbitrary code by sending more data than was requested,...

6.8CVSS7.6AI score0.04747EPSS
Exploits2References1
Rows per page
Query Builder