CNNVD-202602-1817 Information

CNNVD ID

CNNVD-202602-1817

Related CVE

CVE-2026-26157

• CNNVD Published: 2026-02-11

Description (Chinese)

BusyBox是乌克兰Denis Vlasenko个人开发者的一套包含了多个linux命令和工具的应用程序。 BusyBox存在安全漏洞，该漏洞源于其归档提取工具路径清理不完整，可能导致提取恶意归档时任意文件覆盖，进而可能执行代码。

Description (English)

BusyBox is a set of applications by Ukrainian individual Denis Vlasenko that contain a number of Linux commands and tools. BusyBox had a security loophole, which stemmed from the incomplete clearance of its archive extraction tool path, which could lead to any file coverage at the time of the extraction of the malicious filing, which could lead to code enforcement.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-02-11

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-26157 https://bugzilla.redhat.com/show_bug.cgi?id=2439039 https://git.busybox.net/busybox/commit/archival?id=3fb6b31c716669e12f75a2accd31bb7685b1a1cb