Findings for Container Security, Low, [TheRedHatter/javagoof:Dockerfile]:CVE-2005-2541
Created by: armorcodegithubpreprod[bot]
Findings for Container Security, Low, [TheRedHatter/javagoof:Dockerfile]:CVE-2005-2541
Component Details
- Exploit Maturity: no-known-exploit
- Vulnerable Package: -
- Current Version: -
- Vulnerable Version(s): >*
- Vulnerable Path: >null Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
This is considered intended behaviour, as tar is an archiving tool and one needs to give -p as a command line flag
Origin : null
Type : null
Image Id : null
Snyk Project Status: Active