pkg:Debian/node-tar
共 15 筆 CVEHIGH11MEDIUM4
✅ 檢查你的版本
所有已知漏洞
- HIGH8.8CVE-2026-23950Race Condition in node-tar Path Reservations via Unicode Ligature Collisions on macOS APFSfrom 0
- HIGH8.2CVE-2026-24842node-tar Vulnerable to Arbitrary File Creation/Overwrite via Hardlink Path Traversalfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3
- HIGH8.2CVE-2021-37701Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic linksfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u2
- HIGH8.2CVE-2021-37701Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic linksfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u2
- HIGH8.2CVE-2021-37701Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic linksfrom 0, < 4.4.6+ds1-3+deb10u2
- HIGH8.2CVE-2021-37712Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic linksfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u2
- HIGH8.2CVE-2021-32804Arbitrary File Creation/Overwrite due to insufficient absolute path sanitizationfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u1
- HIGH8.2CVE-2021-32803Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoningfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u1
- from 0, < 4.4.4+ds1-2
- from 0, < 2.2.1-1
- HIGH7.1CVE-2026-26960Arbitrary File Read/Write via Hardlink Target Escape Through Symlink Chain in node-tar Extractionfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3
- MEDIUM6.5CVE-2024-28863Denial of service while parsing a tar file due to lack of folders count validationfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3
- from 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3
- MEDIUM6.1CVE-2026-23745node-tar is Vulnerable to Arbitrary File Overwrite and Symlink Poisoning via Insufficient Path Sanitizationfrom 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3
- from 0, < 6.0.5+ds1+~cs11.3.9-1+deb11u3