exploitDog

CVE-2025-63371

Опубликовано: 19 нояб. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the ZIP file processing component, specifically in the functionality responsible for extracting and handling ZIP archive contents.

Ссылки

https://jeroscope.com/advisories/2025/jero-2025-007/
Third Party Advisory
https://www.onecommander.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:onecommander:onecommander:3.102.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00603

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-cr8f-gpg2-8g3h

CVSS3: 7.5

github

3 месяца назад

Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the ZIP file processing component, specifically in the functionality responsible for extracting and handling ZIP archive contents.

EPSS

Процентиль: 69%

0.00603

Низкий

7.5 High

CVSS3

Дефекты

CWE-22