Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
crates.io/astral-tokio-tar — 5 CVEs · VulnScope
pkg:crates.io/
astral-tokio-tar
5 total CVEs
HIGH
2
MEDIUM
2
✅ Check your installed version
Check
All known vulnerabilities
HIGH
8.1
CVE-2025-62518
`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling
from 0, < 0.5.6
HIGH
8.1
CVE-2025-62518
`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling
>= 0.0.0-0, < 0.5.6
MEDIUM
5.3
CVE-2026-32766
Insufficient validation of PAX extensions during extraction
from 0, < 0.6.0
MEDIUM
5.3
Insufficient validation of PAX extensions during extraction
>= 0.0.0-0, < 0.6.0
—
astral-tokio-tar has a path traversal in tar extraction
from 0, < 0.5.4
CVE-2026-32766
CVE-2025-59825