CVE-2020-27833HIGHCVSS 7.1vup to & including openshift-clients-4.7.0-202104250659.p0.git.95881af2021-05-14
CVE-2020-27833 [HIGH] CWE-20 CVE-2020-27833: A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file wri
A Zip Slip vulnerability was found in the oc binary in openshift-clients where an arbitrary file write is achieved by using a specially crafted raw container image (.tar file) which contains symbolic links. The vulnerability is limited to the command `oc image extract`. If a symbolic link is first created pointing within the tarball, this allows furthe
cvelistv5nvd