Npmjs

Tar

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.6

CVE-2021-37712

  • EPSS 0.02%
  • Published 31.08.2021 17:15:08
  • Last modified 21.11.2024 06:15:46

The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symboli...

8.6

CVE-2021-37713

  • EPSS 0.61%
  • Published 31.08.2021 17:15:08
  • Last modified 21.11.2024 06:15:46

The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of the extrac...

8.6

CVE-2021-37701

  • EPSS 0.03%
  • Published 31.08.2021 17:15:07
  • Last modified 21.11.2024 06:15:44

The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic...