Progress: >> Mixlib-Archive >> 0.2.0 Security Vulnerabilities
Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries
CVSS Score
7.5
EPSS Score
0.002
Published
2017-07-17