VDB
MINI-2r4m-xgqf-3vc9
MINI-2r4m-xgqf-3vc9
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| MinimOS | argo-workflow-controller-compat-fips-3.6 | 0, 0 |
| MinimOS | argo-workflows-fips-3.6 | 0, 0 |
| MinimOS | argo-workflow-executor-fips-3.6 | 0, 0 |
| MinimOS | argo-workflow-controller-fips-3.6 | 0, 0 |
| MinimOS | argo-workflow-cli-fips-3.6 | 0, 0 |
| MinimOS | argo-workflow-executor-compat-fips-3.6 | 0, 0 |
| MinimOS | argo-workflows-ui-fips-3.6 | 0, 0 |
Exploit Intelligence
- CVE-2026-31802 - npm tar path traversal vulnerability scanner (github-poc-repo)
- CVE-2026-31802 - npm tar path traversal vulnerability scanner (github-poc)
- CVE-2026-31802 - npm tar path traversal vulnerability scanner (github-poc-repo)
- CVE-2026-31802 - npm tar path traversal vulnerability scanner (github-poc)
- Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction. (github-poc-repo)
- Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction. (github-poc)
- pnpm-workspace.yaml (github-poc)
- .grype.yaml (github-poc)
- cves.ts (github-poc)
- npm-bundle-patch.js (github-poc)
Timeline
- Mar 13, 2026 CVE Published