exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2025-64118

5 месяцев назад

node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.

EPSS: Низкий

CVE-2025-64118

5 месяцев назад

node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.

CVSS3: 4.7

EPSS: Низкий

CVE-2025-64118

5 месяцев назад

node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.

EPSS: Низкий

CVE-2025-64118

5 месяцев назад

node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { s ...

EPSS: Низкий

GHSA-29xp-372q-xqph

5 месяцев назад

node-tar has a race condition leading to uninitialized memory exposure

EPSS: Низкий

BDU:2026-01714

5 месяцев назад

Уязвимость библиотеки node-tar программной платформы Node.js, позволяющая нарушителю раскрыть защищаемую информацию

CVSS3: 7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.		0% Низкий	5 месяцев назад
CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.	CVSS3: 4.7	0% Низкий	5 месяцев назад
CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.		0% Низкий	5 месяцев назад
CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { s ...		0% Низкий	5 месяцев назад
GHSA-29xp-372q-xqph node-tar has a race condition leading to uninitialized memory exposure		0% Низкий	5 месяцев назад
BDU:2026-01714 Уязвимость библиотеки node-tar программной платформы Node.js, позволяющая нарушителю раскрыть защищаемую информацию	CVSS3: 7	0% Низкий	5 месяцев назад

Уязвимостей на страницу