Directory Traversal Vulnerability in SerenityOS Tar/Unzip: Potential Command Execution and Privilege Escalation

Directory Traversal Vulnerability in SerenityOS Tar/Unzip: Potential Command Execution and Privilege Escalation

CVE-2021-31272 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SerenityOS before commit 3844e8569689dd476064a0759d704bc64fb3ca2c contains a directory traversal vulnerability in tar/unzip that may lead to command execution or privilege escalation.

Learn more about our Web Application Penetration Testing UK.