CVE-2026-45390 | OCaml-tar up to 3.3.x Decompression Endpoint path traversal

Inserito da Angelo Barbosa | Giu 16, 2026 | CVE

A vulnerability was found in OCaml-tar up to 3.3.x and classified as critical. This issue affects some unknown processing of the component Decompression Endpoint. Such manipulation leads to relative path traversal.

This vulnerability is traded as CVE-2026-45390. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-45390 | OCaml-tar up to 3.3.x Decompression Endpoint path traversal

Post correlati

CVE-2025-47952 | Traefik up to 1.7.34/2.11.24/3.4.0 URL Encoding path traversal

CVE-2024-6382 | MongoDB Rust Driver up to 2.8.1 syntactically invalid structure

CVE-2024-9636 | Post Grid and Gutenberg Blocks Plugin up to 2.3.3 on WordPress Remote Code Execution

CVE-2024-55913 | IBM Concert Software up to 1.0.5 URL path traversal