CVE-2018-20990 - CERT CVE

  1. CVE-2018-20990

ID CVE-2018-20990
Sažetak An issue was discovered in the tar crate before 0.4.16 for Rust. Arbitrary file overwrite can occur via a symlink or hardlink in a TAR archive.
Reference
CVSS
Base: 6.4
Impact: 4.9
Exploitability:10.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL PARTIAL
CVSS vektor AV:N/AC:L/Au:N/C:N/I:P/A:P
Zadnje važnije ažuriranje 28-08-2019 - 15:58
Objavljeno 26-08-2019 - 13:15