CVE-2026-5704
ADVISORY - nistSummary
A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidden file injection with fully attacker-controlled content. This bypasses pre-extraction inspection mechanisms, potentially allowing an attacker to introduce malicious files onto a system without detection.
Common Weakness Enumeration (CWE)
ADVISORY - nist
Unrestricted Upload of File with Dangerous Type
Sign in to Docker Scout
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.
Sign in