Lucene search
SnykCVELIST:CVE-2018-1002209HistoryOct 03, 2022 - 4:21 p.m.
CVE-2018-1002209
2022-10-0316:21:40
CWE-22
snyk
www.cve.org
quazip
directory traversal
zip-slip
QuaZIP before 0.7.6 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a …/ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as ‘Zip-Slip’.
CNA Affected
[
{
"product": "quazip",
"vendor": "quazip",
"versions": [
{
"lessThan": "0.7.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
fedora
fedora
[SECURITY] Fedora 28 Update: quazip-0.7.6-1.fc28
2018-08-14 21:12:12
[SECURITY] Fedora 27 Update: quazip-0.7.6-1.fc27
2018-08-22 00:46:25
mageia
mageia
Updated quazip packages fix security vulnerability
2018-09-01 00:11:59
osv
osv
CVE-2018-1002209
2018-07-25 17:29:02
nessus
nessus
Fedora 28 : quazip (2018-0c586e5178)
2019-01-03 00:00:00
prion
prion
Directory traversal
2018-07-25 17:29:00
nvd
nvd
CVE-2018-1002209
2018-07-25 17:29:02
openvas
openvas
Fedora Update for quazip FEDORA-2018-9829c6ddcf
2018-08-22 00:00:00
Mageia: Security Advisory (MGASA-2018-0362)
2022-01-28 00:00:00
Fedora Update for quazip FEDORA-2018-0c586e5178
2018-08-15 00:00:00
debiancve
debiancve
CVE-2018-1002209
2022-10-03 16:21:40
cve
cve
CVE-2018-1002209
2022-10-03 16:21:40
ubuntucve
ubuntucve
CVE-2018-1002209
2018-07-25 00:00:00
f5
f5
K64709522 : Multiple Zip Slip vulnerabilities
2018-08-03 00:00:00
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.4%
Related for CVELIST:CVE-2018-1002209