exploitDog

GHSA-fc37-wxhv-6gp2

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 3.3

Описание

Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive.

Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive.

Ссылки

EPSS

Процентиль: 39%

0.00171

Низкий

3.3 Low

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2017-2158

CVSS3: 3.3

nvd

около 8 лет назад

Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive.

EPSS

Процентиль: 39%

0.00171

Низкий

3.3 Low

CVSS3

CVE ID

Дефекты

CWE-20