CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-36566

Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.4%

CVSS Severity

CVSS v3 Score 9.1

References

https://github.com/whyrusleeping/tar-utils/commit/20a61371de5b51380bbdb0c7935b30b0625ac227
https://pkg.go.dev/vuln/GO-2021-0106
https://snyk.io/research/zip-slip-vulnerability
https://github.com/whyrusleeping/tar-utils/commit/20a61371de5b51380bbdb0c7935b30b0625ac227
https://pkg.go.dev/vuln/GO-2021-0106
https://snyk.io/research/zip-slip-vulnerability

Products affected by CVE-2020-36566

Tar-Utils Project » Tar-Utils » Version: N/A

cpe:2.3:a:tar-utils_project:tar-utils:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-36566

Products

Pricing

Contact Us