Lucene search
GoogleOSV:CVE-2018-1002205HistoryJul 25, 2018 - 5:29 p.m.
CVE-2018-1002205
2018-07-2517:29:01
Google
osv.dev
8
DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a …/ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as ‘Zip-Slip’.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dotnetzip.semverd | eq | 1.9.2 | |
| dotnetzip.semverd | eq | 1.9.3 | |
| dotnetzip.semverd | eq | 1.9.2-rc1 |
Related
prion
prion
Directory traversal
2018-07-25 17:29:00
cvelist
cvelist
CVE-2018-1002205
2022-10-03 16:21:40
nvd
nvd
CVE-2018-1002205
2018-07-25 17:29:01
cve
cve
CVE-2018-1002205
2022-10-03 16:21:40
ics
ics
Omron Engineering Software Zip-Slip
2023-09-19 12:00:00
github
github
High severity vulnerability that affects DotNetZip
2018-10-16 17:16:40
osv
osv
High severity vulnerability that affects DotNetZip
2018-10-16 17:16:40
veracode
veracode
Arbitrary File Writing
2018-07-09 03:34:28
checkpoint_advisories
checkpoint_advisories
f5
f5
K64709522 : Multiple Zip Slip vulnerabilities
2018-08-03 00:00:00
ibm
ibm