Vuln ID: CVE-2020-28949
Published: 2020-11-19 19:15:11Z
Description: Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
Source: NVD.NIST.GOV