CVE-2025-46394

ADVISORY - nist

Summary

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.

EPSS Score⁠: 0.00017 (0.031)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-451⁠

User Interface (UI) Misrepresentation of Critical Information

Impacted images

Advisories

NIST

CREATED

8 months ago

UPDATED

3 months ago

ADVISORY IDCVE-2025-46394⁠

EXPLOITABILITY SCORE

1.4

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-451⁠

CVSS SCORE

3.2low

Alpine

CREATED

4 months ago

UPDATED

22 days ago

ADVISORY IDCVE-2025-46394⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

8 months ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-46394⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

8 months ago

UPDATED

3 months ago

ADVISORY IDCVE-2025-46394⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

3.3medium

Chainguard

CREATED

3 months ago

UPDATED

3 months ago

ADVISORY ID

CGA-jrx7-26c9-jxcv

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

minimos

CREATED

3 months ago

UPDATED

3 months ago

ADVISORY ID

MINI-7xq4-37v3-672q

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY