CVE-2026-20613 — The ArchiveReader.extractContents() function used by cctl image load and container image load performs no pathname validation before extracting an archive member. This means that a carelessly or malic — CVE Database · The Intelligence Room