PEAR (Archive_Tar) Data Breach
PEAR (Archive_Tar) experienced a data breach that was reported on August 25, 2022. PEAR Archive_Tar Tar.php allows write operations with directory traversal due to inadequate checking of symbolic links. PEAR stands for PHP Extension and Application Repository and it is an open-sourc
Key Facts
- Organization
- PEAR (Archive_Tar)
- Date Reported
- August 25, 2022
- Incident Type
- supply chain
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding supply chain Incidents
Supply chain attacks compromise trusted vendors or software to access downstream targets. Vendor security assessments and software integrity verification reduce exposure.