Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-7774

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tarfile.datafilter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outsid...

6.9CVSS5.9AI score0.00606EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-8785

Malware in sbrugna...

5.5CVSS6.4AI score0.01538EPSS
Exploits1References9
OSV
OSV
added 2025/08/11 1:53 p.m.9 views

BIT-LIBPYTHON-2025-4517 Arbitrary writes via tarfile realpath overflow

Allows arbitrary filesystem writes outside the extraction directory during extraction with filter="data". You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or TarFile.extract using the filter= parameter with a value of...

9.4CVSS8AI score0.01184EPSS
Exploits11References13
Tenable Nessus
Tenable Nessus
added 2020/08/24 12:0 a.m.34 views

Debian DLA-2337-1 : python2.7 security update

Multiple vulnerabilities were discovered in Python2.7, an interactive high-level object-oriented language. CVE-2018-20852 By using a malicious server an attacker might steal cookies that are meant for other domains. CVE-2019-5010 NULL pointer dereference using a specially crafted X509 certificate...

9.8CVSS7.2AI score0.20743EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2020/01/13 12:0 a.m.42 views

EulerOS Virtualization for ARM 64 3.0.5.0 : cpio (EulerOS-SA-2020-1056)

According to the version of the cpio package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - cpio does not properly validate the values written in the header of a TAR file through the tooct function. When creating a T...

7.3CVSS6.4AI score0.00686EPSS
Exploits1References2
OSV
OSV
added 2018/01/29 12:0 a.m.3 views

UBUNTU-CVE-2017-12378

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper input validation checking mechanisms of .tar Tape Archive files...

5.5CVSS7AI score0.02847EPSS
Exploits1References5
OSV
OSV
added 2016/12/08 8:59 a.m.2 views

DEBIAN-CVE-2016-9888

An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...

5.5CVSS6.8AI score0.0133EPSS
Exploits0References1
OSV
OSV
added 2016/05/06 5:59 p.m.8 views

CVE-2015-0857

Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a 1 tar file or 2 file within a tar file...

9.8CVSS9.7AI score
Exploits0References3
Rows per page
Query Builder