Vulnerabilities (CVE)

Filtered by vendor Tardiff Project Subscribe
Filtered by product Tardiff
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-0858 2 Debian, Tardiff Project 2 Debian Linux, Tardiff 2024-11-21 2.1 LOW 3.3 LOW
Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory.
CVE-2015-0857 2 Debian, Tardiff Project 2 Debian Linux, Tardiff 2024-11-21 10.0 HIGH 9.8 CRITICAL
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.