Go/github.com/zarf-dev/zarf — 2 CVEs · VulnScopepkg:Go/github.com/zarf-dev/zarf
共 2 筆 CVEHIGH2
✅ 檢查你的版本
所有已知漏洞
HIGH8.2CVE-2026-29064Zarf's symlink targets in archives are not validated against destination directory in github.com/zarf-dev/zarf >= 0.54.0, < 0.73.1
HIGH7.1CVE-2026-40090Zarf has a Path Traversal via Malicious Package Metadata.Name — Arbitrary File Write >= 0.23.0, < 0.74.2