cb
cvebase
.
~
/
products
/
unjs
/
nanotar
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
unjs
/
Unjs Nanotar
Unjs Nanotar vulnerabilities
1 known vulnerability affecting
unjs/nanotar
.
Track
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2025-69874
P2
CRITICAL
CVSS 9.8
≤ 0.2.0
2026-02-11
CVE-2025-69874 [CRITICAL] CWE-22 CVE-2025-69874: nanotar through 0.2.0 has a path traversal vulnerability in parseTar() and parseTarGzip() that allow nanotar through 0.2.0 has a path traversal vulnerability in parseTar() and parseTarGzip() that allows remote attackers to write arbitrary files outside the intended extraction directory via a crafted tar archive containing path traversal sequence.
ghsa
nvd
osv
Unjs Nanotar vulnerabilities | cvebase