AVG-2880 log
| Package | busybox |
| Status | Vulnerable |
| Severity | Low |
| Type | content spoofing |
| Affected | 1.36.1-2 |
| Fixed | Unknown |
| Current | 1.36.1-2 [extra] |
| Ticket | Create |
| Created | Tue May 20 23:31:34 2025 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2025-46394 | Low | No | Content spoofing | In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences. |