CVE-2026-1464
- Source
- https://cve.org/CVERecord?id=CVE-2026-1464
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-1464.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-1464
- Published
- 2026-01-27T09:15:48.080Z
- Modified
- 2026-03-13T04:01:38.749513Z
- Severity
-
- 4.6 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:L/U:Amber CVSS Calculator
- Summary
- [none]
- Details
-
Integer Overflow or Wraparound vulnerability in MuntashirAkon AppManager (app/src/main/java/org/apache/commons/compress/archivers/tar modules). This vulnerability is associated with program files TarUtils.Java.
This issue affects AppManager: before 4.0.4.
- References
Affected packages
Git / github.com/MuntashirAkon/AppManager
Affected versions
pre-v2.*
pre-v2.5.14
pre-v2.5.15
pre-v2.5.16
pre-v2.5.18
pre-v2.5.19
pre-v2.5.21
pre-v2.5.22
pre-v2.5.23
pre-v2.5.24
v1.*
v1.7-10
v1.7-11
v1.7-12
v1.7-13
v1.7-14
v1.7-15
v1.7-8
v1.7-9
v2.*
v2.0.0
v2.2.0
v2.3.0
v2.4.3
v2.4.5
v2.5.0
v2.5.1
v2.5.10
v2.5.11
v2.5.12
v2.5.13
v2.5.17
v2.5.2
v2.5.20
v2.5.3
v2.5.4
v2.5.5
v2.5.6
v2.5.7
v2.5.8
v2.5.9
v3.*
v3.0.0
v3.0.0-alpha01
v3.0.0-alpha02
v3.0.0-alpha03
v3.0.0-rc01
v3.0.0-rc02
v3.0.0-rc03
v3.0.0-rc04
v3.1.0
v3.1.0-alpha01
v3.1.0-alpha02
v3.1.0-alpha03
v3.1.0-beta01
v3.1.0-beta02
v3.1.0-rc01
v3.1.0-rc02
v3.1.0-rc03
v3.2.0-alpha01
v4.*
v4.0.0
v4.0.0-alpha01
v4.0.0-alpha02
v4.0.0-beta01
v4.0.0-beta02
v4.0.1
v4.0.2
v4.0.3