Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Information Disclosure

🗓️ 19 Mar 2021 18:37:57Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 18 Views

tar vulnerability in read_header function reveals user credentials and file content

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Multiple security vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak
7 Jun 202501:04
ibm
IBM Security Bulletins		Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in tar
11 Nov 202516:04
ibm
IBM Security Bulletins		Security Bulletin: Multiple Vulnerabilities in Hyper Converged Database
21 Jan 202610:51
ibm
AlpineLinux		CVE-2021-20193
26 Mar 202116:41
alpinelinux
ArchLinux		[ASA-202102-41] tar: denial of service
27 Feb 202100:00
archlinux
AstraLinux		 Astra Linux - уязвимость в tar
20 May 202605:53
astralinux
Broadcom		Security updates provided in Brocade Fabric OS v9.2.0, v9.1.1c, v8.2.3d
1 Aug 202300:00
broadcom
Broadcom		This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory.
1 Aug 202300:00
broadcom
Cloud Foundry		USN-5329-1: tar vulnerability | Cloud Foundry
23 May 202200:00
cloudfoundry
CNNVD		git tar.git 安全漏洞
26 Mar 202100:00
cnnvd
Rows per page
Vulners
Node
develdevelMatch1.32+dfsg-1debian
AND
develdevelMatch1.30+dfsg-7debian
AND
debiandebian_linux
OR
tar_projecttarMatch1.32+dfsg-1debian
AND
debiandebian_linuxMatch999
OR
tar_projecttarMatch1.30+dfsg-7debian
AND
debiandebian_linuxMatch11
OR
tar_projecttarMatch1.32-r1os
AND
alpinelinuxalpine_linuxMatch3.11
OR
tar_projecttarMatch1.33-r1os
AND
alpinelinuxalpine_linuxMatch3.13
OR
tar_projecttarMatch1.32-r0os
AND
alpinelinuxalpine_linuxMatch3.10
OR
tar_projecttarMatch1.32-r1os
AND
alpinelinuxalpine_linuxMatch3.12
OR
tar_projecttarMatch1.32-r1os
AND
alpinelinuxalpine_linuxMatchedge
OR
hirsutehirsuteMatch1.32+dfsg-1debian
AND
hirsutehirsuteMatch1.30+dfsg-7debian
AND
debiandebian_linux
OR
googlebionicMatch1.29b-2ubuntu0.2debian
AND
googlebionicMatch1.29b-2ubuntu0.1debian
AND
debiandebian_linux

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Nov 2023 22:56Current
1.5Low risk
Vulners AI Score1.5
CVSS 24.3
CVSS 3.13.3
EPSS0.00069
information disclosurememory leakread_headerlist.csoftware vulnerabilityuser credentialsfile contents
18