All 2 CVE vulnerabilities found in tar-fs, with AI-generated Chinese analysis, references, and POCs.
Vendor: mafintosh
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-59343 | tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball CWE-22 | 7.5AI | HighAI | 2025-09-24 |
| CVE-2025-48387 | tar-fs has issue where extract can write outside the specified dir with a specific tarball CWE-22 | 6.5 | - | 2025-06-02 |
All 2 known CVE vulnerabilities affecting tar-fs with full Chinese analysis, references, and POCs where available.