Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-6891
HistoryDec 17, 2023 - 4:15 a.m.

Design/Logic Flaw

2023-12-1704:15:00
PRIOn knowledge base
www.prio-n.com
4
peazip
vulnerability
dragdropfilesdll.dll
library handler
uncontrolled search path
upgrade
version 9.6.0
vendor response
patched release

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

A vulnerability has been found in PeaZip 9.4.0 and classified as problematic. Affected by this vulnerability is an unknown functionality in the library dragdropfilesdll.dll of the component Library Handler. The manipulation leads to uncontrolled search path. An attack has to be approached locally. Upgrading to version 9.6.0 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-248251. NOTE: Vendor was contacted early, confirmed the existence of the flaw and immediately worked on a patched release.

CPENameOperatorVersion
peazipeq9.4.0

Related

nvd 1
osv 1
cvelist 1
cve 1
nvd
nvd
CVE-2023-6891
2023-12-17 04:15:07
osv
osv
CVE-2023-6891
2023-12-17 04:15:07
cvelist
cvelist
CVE-2023-6891 PeaZip Library dragdropfilesdll.dll uncontrolled search path
2023-12-17 03:31:03
cve
cve
CVE-2023-6891
2023-12-17 04:15:07

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for PRION:CVE-2023-6891
nvd1osv1cvelist1cve1