CVE-2021-31566

HIGH

Published Aug 23, 20223y ago · Modified Jun 17, 20261w ago

7.8 CVSS 3.1

High

Published Aug 23, 2022 3y ago

Last Modified Jun 17, 2026 1w ago

Description

An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. A local attacker may use this flaw to gain more privileges in a system.

CVSS Details

Base Score

7.8

Exploitability

1.8

Impact

5.9

Vector string

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector Local

Attack Complexity Low

Privileges Required None

User Interaction Required

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 1

CWE-59

Affected Products 22

Vendor	Product	Version	Range
libarchive	libarchive	*	<3.5.2
fedoraproject	fedora	35	any
redhat	enterprise_linux	8.0	any
redhat	enterprise_linux_eus	8.6	any
redhat	enterprise_linux_for_ibm_z_systems	8.0	any
redhat	enterprise_linux_for_ibm_z_systems_eus	8.6	any
redhat	enterprise_linux_for_power_little_endian	8.0	any
redhat	enterprise_linux_for_power_little_endian_eus	8.6	any
redhat	enterprise_linux_server_aus	8.6	any
redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.6	any
redhat	enterprise_linux_server_tus	8.6	any
redhat	codeready_linux_builder	*	any
redhat	enterprise_linux	8.0	any
redhat	enterprise_linux_eus	8.6	any
redhat	enterprise_linux_for_ibm_z_systems	8.0	any
redhat	enterprise_linux_for_ibm_z_systems_eus	8.6	any
redhat	enterprise_linux_for_power_little_endian	8.0	any
redhat	enterprise_linux_for_power_little_endian_eus	8.6	any
debian	debian_linux	10.0	any
splunk	universal_forwarder	*	≥8.2.0 – <8.2.12
splunk	universal_forwarder	*	≥9.0.0 – <9.0.6
splunk	universal_forwarder	9.1.0	any

References 5

access.redhat.com https://access.redhat.com/security/cve/CVE-2021-31566

Third Party Advisory
bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2024237

Issue TrackingPatchThird Party Advisory
github.com https://github.com/libarchive/libarchive/commit/b41daecb5ccb4c8e3b2c53fd6147109fc12c3043

PatchThird Party Advisory
github.com https://github.com/libarchive/libarchive/issues/1566

Issue TrackingPatchThird Party Advisory
lists.debian.org https://lists.debian.org/debian-lts-announce/2022/11/msg00030.html

Mailing ListThird Party Advisory

Remediation

bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2024237

Issue TrackingPatchThird Party Advisory
github.com https://github.com/libarchive/libarchive/commit/b41daecb5ccb4c8e3b2c53fd6147109fc12c3043

PatchThird Party Advisory
github.com https://github.com/libarchive/libarchive/issues/1566

Issue TrackingPatchThird Party Advisory