Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tar vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2019-14866
In all versions of cpio prior to 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting archive may contain files with permissions the attacker did not have or in paths ...
Gnu Cpio
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
4.3
CVSSv2
CVE-2019-11246
The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary...
Kubernetes Kubernetes
Kubernetes Kubernetes 1.12.11
2 Github repositories
5.8
CVSSv2
CVE-2019-11249
The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary...
Kubernetes Kubernetes
Kubernetes Kubernetes 1.12.11
Redhat Openshift Container Platform 3.9
Redhat Openshift Container Platform 3.11
Redhat Openshift Container Platform 3.10
Redhat Openshift Container Platform 4.1
1 Article
4.3
CVSSv2
CVE-2012-1425
The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Vir...
Norman Norman Antivirus & Antispyware 6.06.12
Eset Nod32 Antivirus 5795
Trendmicro Housecall 9.120.0.1004
Avira Antivir 7.11.1.163
Symantec Endpoint Protection 11.0
Trendmicro Trend Micro Antivirus 9.120.0.1004
Mcafee Gateway 2010.1c
Kaspersky Kaspersky Anti-virus 7.0.0.125
Cat Quick Heal 11.00
Fortinet Fortinet Antivirus 4.2.254.0
Jiangmin Jiangmin Antivirus 13.0.900
Ikarus Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0
Antiy Avl Sdk 2.0.3.7
Emsisoft Anti-malware 5.1.0.1
Pc Tools Pc Tools Antivirus 7.0.3.5
Mcafee Scan Engine 5.400.0.1158
NA
CVE-2023-3385
An issue has been discovered in GitLab affecting all versions starting from 8.10 prior to 16.0.8, all versions starting from 16.1 prior to 16.1.3, all versions starting from 16.2 prior to 16.2.2. Under specific circumstances, a user importing a project 'from export' cou...
Gitlab Gitlab
10
CVSSv2
CVE-2021-38197
unarr.go in go-unarr (aka Go bindings for unarr) 0.1.1 allows Directory Traversal via ../ in a pathname within a TAR archive.
Go-unarr Project Go-unarr 0.1.1
7.5
CVSSv2
CVE-2002-1938
Virgil CGI Scanner 0.9 allows remote malicious users to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters.
Virgil Cgi Scanner 0.9
7.5
CVSSv2
CVE-2021-31272
SerenityOS before commit 3844e8569689dd476064a0759d704bc64fb3ca2c contains a directory traversal vulnerability in tar/unzip that may lead to command execution or privilege escalation.
Serenityos Serenityos
4.3
CVSSv2
CVE-2012-1456
The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangm...
Norman Norman Antivirus & Antispyware 6.06.12
Rising-global Rising Antivirus 22.83.00.03
Eset Nod32 Antivirus 5795
Trendmicro Housecall 9.120.0.1004
Symantec Endpoint Protection 11.0
Trendmicro Trend Micro Antivirus 9.120.0.1004
F-prot F-prot Antivirus 4.6.2.117
Sophos Sophos Anti-virus 4.61.0
Mcafee Gateway 2010.1c
Kaspersky Kaspersky Anti-virus 7.0.0.125
Cat Quick Heal 11.00
Avg Avg Anti-virus 10.0.0.1190
Fortinet Fortinet Antivirus 4.2.254.0
Jiangmin Jiangmin Antivirus 13.0.900
Ikarus Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0
Emsisoft Anti-malware 5.1.0.1
Aladdin Esafe 7.0.17.0
Pandasecurity Panda Antivirus 10.0.2.7
Comodo Comodo Antivirus 7424
Mcafee Scan Engine 5.400.0.1158
7.8
CVSSv2
CVE-2007-2973
Avira Antivir Antivirus prior to 7.03.00.09 allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via a malformed TAR archive.
Avira Av Pack
Avira Antivir
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »