Skip to main content
Version: latest

CVE-2005-2541

CVE Details

CVE-2005-2541

Last Update

9/25/24

NIST CVE Summary

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.

Our Official Summary

Waiting on a fix from third party mongodb vendor.

CVE Severity

10.0

Status

Ongoing

Affected Products & Versions

  • Palette VerteX 4.4.14

Revision History

  • 1.0 08/16/2024 Initial Publication
  • 2.0 08/17/2024 Added Palette VerteX 4.4.14 to Affected Products
  • 3.0 09/25/2024 CVE remediated in Palette VerteX 4.4.18