CVE-2026-23745

Vulnerability

CVE-2026-23745

node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

ecosystem: redhat:6, redhat:9, redhat:10

A flaw was found in the node-tar library. This vulnerability allows an attacker to craft malicious archives that, when extracted, can bypass intended security restrictions. This leads to arbitrary file overwrite and symlink poisoning, potentially allowing unauthorized modification of files on the system.

References

secalert@redhat.com: https://access.redhat.com/security/cve/CVE-2026-23745
secalert@redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2430538
secalert@redhat.com: https://github.com/isaacs/node-tar/commit/340eb285b6d986e91969a1170d7fe9b0face405e
secalert@redhat.com: https://github.com/isaacs/node-tar/security/advisories/GHSA-8qq5-rm4j-mr97
secalert@redhat.com: https://nvd.nist.gov/vuln/detail/CVE-2026-23745
secalert@redhat.com: https://www.cve.org/CVERecord?id=CVE-2026-23745

severityI

Important

type: vendor

source: secalert@redhat.com

CVSS3.1

8.2HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

AV	Local
AC	Low
PR	Low
UI	Required
S	Changed
C	High
I	High
A	High

source: secalert@redhat.com

　CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

source: secalert@redhat.com

published: 2026-01-16 22:00:08

modified: 2026-02-27 00:11:41

Detection

redhat:10

CVE-2026-23745

redhat-vex

OR

unfixedAffected

sgx-common

package type: binary

type: version

unfixedAffected

sgx-libs

package type: binary

type: version

unfixedAffected

sgx-mpa

package type: binary

type: version

unfixedAffected

sgx-pckid-tool

package type: binary

type: version

unfixedAffected

tdx-qgs

package type: binary

type: version

tag: rhel-10:b80bcfb1-921f-0310-88a1-5d0eaf9eecb5

redhat:6

CVE-2026-23745

redhat-vex

OR

unfixedOut of support scope

tar

package type: source

type: version

tag: rhel-6-els:6cb17187-108d-81fc-8d19-3476bb2653a1

OR

unfixedOut of support scope

tar

package type: source

type: version

tag: rhel-6-extras-including-unpatched:6cb17187-108d-81fc-8d19-3476bb2653a1

OR

unfixedOut of support scope

tar

package type: source

type: version

tag: rhel-6-including-unpatched:6cb17187-108d-81fc-8d19-3476bb2653a1

OR

unfixedOut of support scope

tar

package type: source

type: version

tag: rhel-6-supplementary:6cb17187-108d-81fc-8d19-3476bb2653a1

redhat:9

CVE-2026-23745

redhat-vex

OR

unfixedAffected

sgx-common

package type: binary

type: version

unfixedAffected

sgx-libs

package type: binary

type: version

unfixedAffected

sgx-mpa

package type: binary

type: version

unfixedAffected

sgx-pckid-tool

package type: binary

type: version

unfixedAffected

tdx-qgs

package type: binary

type: version

tag: rhel-9-including-unpatched:3391f347-998d-8236-1771-5d3de3af53ff

Data Sources

RedHat Enterprise Linux CSAF VEX
redhat-vex