Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:31894
HistorySep 01, 2021 - 4:59 a.m.

Symlink Attack

2021-09-0104:59:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
42

0.001 Low

EPSS

Percentile

48.2%

tar is vulnerable to symlink attack. The vulnerability exists due to the lack of checking if the symbolic link has been modified through the logic used both \\ and / characters as path separators.