Lucene search
GoogleOSV:CVE-2018-1002201HistoryJul 25, 2018 - 5:29 p.m.
CVE-2018-1002201
2018-07-2517:29:00
Google
osv.dev
4
zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a …/ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as ‘Zip-Slip’.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zt-zip | eq | zt-zip-1.8 | |
| zt-zip | eq | zt-zip-1.12 | |
| zt-zip | eq | zt-zip-1.6 | |
| zt-zip | eq | zt-zip-1.3 | |
| zt-zip | eq | zt-zip-1.7 | |
| zt-zip | eq | zt-zip-1.2 | |
| zt-zip | eq | zt-zip-1.10 | |
| zt-zip | eq | zt-zip-1.9 | |
| zt-zip | eq | zt-zip-1.0 | |
| zt-zip | eq | zt-zip-1.4 |
Related
cve
cve
CVE-2018-1002201
2022-10-03 16:21:40
redhatcve
redhatcve
CVE-2018-1002201
2018-06-06 14:27:04
nvd
nvd
CVE-2018-1002201
2018-07-25 17:29:00
osv
osv
Improper Limitation of a Pathname to a Restricted Directory in zt-zip
2022-05-13 01:30:44
github
github
Improper Limitation of a Pathname to a Restricted Directory in zt-zip
2022-05-13 01:30:44
cvelist
cvelist
CVE-2018-1002201
2022-10-03 16:21:40
veracode
veracode
Arbitrary File Write
2018-06-06 06:56:37
prion
prion
Directory traversal
2018-07-25 17:29:00
f5
f5
K64709522 : Multiple Zip Slip vulnerabilities
2018-08-03 00:00:00
checkpoint_advisories
checkpoint_advisories