CVE-2026-50163
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.1 / 10
Vulnerability Description
`oras-go` tar extraction: Hardlink entry with relative Linkname escapes extract dir via process CWD resolution
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
go
Product
oras.land/oras-go/v2
Discussion (0)
Add Comment
No comments yet. Be the first!