CVE-2015-2304

Published March 15th, 2015

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.4

MEDIUM

Affected

PROJECT

Description

Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive.

libarchive/libarchive

Multi-format archive and compression library

GitHub

3.52K