2 matches found
CVE-2023-31483
tar/TarFileReader.cpp in Cauldron cbang before bastet-v8.1.17 has a directory traversal during extraction that allows the attacker to create or write to files outside the current directory via a crafted tar archive...
CVE-2023-31483
Cauldron cbang (Cauldron Development) prior to bastet-v8.1.17 is affected by a directory-traversal vulnerability in tar/TarFileReader.cpp that can cause extraction to write or create files outside the target directory when processing crafted tar archives. The issue is explicitly tied to cbang bef...