7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-36193

GHSA ID

GHSA-rpw6-9xfx-jvcx

EPSS Score

0.99014%

CWE

CWE-22

Published

4/22/2021

Updated

7/5/2023

KEV Status

Yes

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2020-36193

CVE-2020-36193:
Directory Traversal in Archive_Tar

Tar.php in Archive_Tar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948.

:exclamation: Note:

There was an initial fix for this vulnerability made in version 1.4.12. That fix introduced a bug which was fixed in 1.4.13. Therefore we have set the first-patched-version to 1.4.13 which the earliest working version that avoids this vulnerability.

(GitHub Advisory)

7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-36193

GHSA ID

GHSA-rpw6-9xfx-jvcx

EPSS Score

0.99014%

CWE

CWE-22

Published

4/22/2021

Updated

7/5/2023

KEV Status

Yes

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
pear/archive_tar	composer	<= 1.4.11	1.4.13

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from the handling of symbolic links during extraction. The commit cde4605 added a critical check in _extractList() to compare realpath(dirname(symlink_target)) against realpath(extraction_path). Prior to this fix (versions <=1.4.11), there was no validation to prevent symlinks from resolving outside the target directory. The patch directly modifies this function, confirming it as the vulnerable point. The CVE description explicitly references inadequate symlink checking during write operations, which aligns with this function's responsibility for processing archive entries.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T*r.p*p in *r**iv*_T*r t*rou** *.*.** *llows writ* op*r*tions wit* *ir**tory Tr*v*rs*l *u* to in***qu*t* ****kin* o* sym*oli* links, * r*l*t** issu* to *V*-****-*****. ### :*x*l*m*tion: Not*: T**r* w*s *n [initi*l *ix](*ttps://*it*u*.*om/p**r/*r**i

Reasoning

T** vuln*r**ility st*ms *rom t** **n*lin* o* sym*oli* links *urin* *xtr**tion. T** *ommit ******* ***** * *riti**l ****k in _*xtr**tList() to *omp*r* r**lp*t*(*irn*m*(symlink_t*r**t)) ***inst r**lp*t*(*xtr**tion_p*t*). Prior to t*is *ix (v*rsions <=*

7.5

Basic Information

Concerned about an active attack path?

CVE-2020-36193: Directory Traversal in Archive_Tar

:exclamation: Note:

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2020-36193:
Directory Traversal in Archive_Tar

Vulnerability Intelligence
Miggo AI