Screenshot of BaseFortify CVE report page showing CVE-2025-15036 details, including description of path traversal in archive extraction and a CVSS score of 9.6.

Technical details:

• CWE-29: Path Traversal
• Unsafe tar.gz extraction
• No validation of file paths
• Allows overwrite outside target dir

Impact: File overwrite → privilege escalation

#Vulnerability #InfoSec #CWE29 #DevSecOps