Lucene search
K

53 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-12015

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via...

7.5CVSS6.6AI score0.07343EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2025/02/05 8:2 a.m.20 views

K000149640: Multiple Perl vulnerabilities

Security Advisory Description CVE-2023-31486 HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow...

8.2CVSS6.8AI score0.11334EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.27 views

Oracle Linux 7 : perl-Archive-Tar (ELSA-2019-2097)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2019-2097 advisory. 1.92-3 - CVE-2018-12015 - Directory traversal in Archive::Tar bug 1592803 Tenable has extracted the preceding description block directly from the Oracle Linux...

7.5CVSS6.4AI score0.07343EPSS
Exploits1References2
OSV
OSV
added 2023/08/31 12:14 p.m.2 views

BELL-CVE-2018-12015 CVE-2018-12015 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.07343EPSS
Exploits1References1
Rosalinux
Rosalinux
added 2021/07/02 6:14 p.m.30 views

Advisory ROSA-SA-2021-1984

Software: tar 1.26 OS: Cobalt 7.9 CVE-ID: CVE-2018-12015. CVE-Crit: HIGH CVE-DESC: In Perl before 5.26.2, the Archive :: Tar module allows remote attackers to bypass the directory traversal protection mechanism and overwrite arbitrary files via an archive file containing a symbolic link and a...

7.5CVSS7.8AI score0.07343EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2018:1977-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2018:1972-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.10866EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.35 views

EulerOS Virtualization for ARM 64 3.0.6.0 : perl-Archive-Tar (EulerOS-SA-2020-1998)

According to the version of the perl-Archive-Tar package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives...

7.5CVSS6.5AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for perl-Archive-Tar (EulerOS-SA-2020-1998)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2019-1078)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2018-1307)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2019-1464)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.11676EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2018-1308)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for perl-Archive-Tar (EulerOS-SA-2019-2415)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.07343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2019-1158)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.07343EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.96 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : perl-Archive-Tar Vulnerability (NS-SA-2019-0230)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has perl-Archive-Tar packages installed that are affected by a vulnerability: - In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitra...

7.5CVSS6.7AI score0.07343EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/12/10 12:0 a.m.37 views

EulerOS 2.0 SP2 : perl-Archive-Tar (EulerOS-SA-2019-2415)

According to the version of the perl-Archive-Tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrit...

7.5CVSS6.7AI score0.07343EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/11/10 3:9 p.m.32 views

CVE-2018-12015

It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives. An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl interpreter...

7.5CVSS3.2AI score0.07343EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.30 views

EulerOS 2.0 SP5 : perl-Archive-Tar (EulerOS-SA-2019-2181)

According to the version of the perl-Archive-Tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Archive::Tar provides an object oriented mechanism for handling tar files. It provides class methods for quick and easy files handling whi...

7.5CVSS6.8AI score0.07343EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.42 views

Amazon Linux 2 : perl-Archive-Tar (ALAS-2019-1330)

It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives. An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl interpreter.CVE-2018-12015...

7.5CVSS6.5AI score0.07343EPSS
Exploits1References2
Rows per page
Query Builder