Описание
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.
A flaw was found in the JSZip package. Affected versions of JSZip could allow a remote attacker to traverse directories on the system caused by the failure to sanitize filenames when files are loaded with loadAsync, which makes the library vulnerable to a Zip Slip attack. By extracting files from a specially crafted archive, an attacker could gain access to parts of the file system outside of the target folder, overwrite the executable files, and execute arbitrary commands on the system.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| OpenShift Service Mesh 2 | openshift-service-mesh/kiali-rhel8 | Will not fix | ||
| OpenShift Service Mesh 2.1 | openshift-service-mesh/kiali-rhel8 | Affected | ||
| Red Hat Enterprise Linux 6 | firefox | Not affected | ||
| Red Hat Enterprise Linux 7 | firefox | Not affected | ||
| Red Hat Enterprise Linux 8 | mozjs60 | Not affected | ||
| Red Hat Enterprise Linux 9 | gjs | Not affected | ||
| Red Hat Enterprise Linux 9 | polkit | Not affected | ||
| Red Hat Fuse 7 | jszip | Out of support scope | ||
| Red Hat OpenShift Container Platform 3.11 | openshift3/ose-console | Out of support scope | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-console | Will not fix |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
7.3 High
CVSS3
Связанные уязвимости
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a craft ...
EPSS
7.3 High
CVSS3