5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.6%
A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat from this vulnerability is to system availability.