2 matches found
ROS-2-2179
2.2179 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...
The vulnerability in Node.js’s Node-tar module for processing tar archives stems from a flaw in the pathname limitation of the directory handling mechanism. This allows attackers to create, overwrite arbitrary files, and execute arbitrary code.
The vulnerability of the Node.js module for processing tar archives with the Node-tar package is related to deficiencies in pathname restrictions for directories. Exploiting this vulnerability allows an attacker to create, overwrite arbitrary files, and execute arbitrary code using a specially...