CVE-2005-2541
CVE Details
Last Update
9/25/24
NIST CVE Summary
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Our Official Summary
Waiting on a fix from third party mongodb vendor.
CVE Severity
Status
Ongoing
Affected Products & Versions
- Palette VerteX airgap 4.4.14
- Palette VerteX 4.5.3
- Palette Enterprise 4.5.3
Revision History
- 1.0 08/16/2024 Initial Publication
- 2.0 08/17/2024 Added Palette VerteX airgap 4.4.14 to Affected Products
- 3.0 09/25/2024 CVE remediated in Palette VerteX airgap 4.4.18
- 4.0 10/14/2024 Added Palette Enterprise & Palette VerteX 4.5.3 to Affected Products