EPSS
Percentile
74.2%
chmd_read_headers in mspack/chmd.c in libmspack before 0.8alpha accepts a filename that has ‘\0’ as its first or second character (such as the “/\0” name).
bugzilla.redhat.com/show_bug.cgi?id=1644215
www.cve.org/CVERecord?id=CVE-2018-18585 https://nvd.nist.gov/vuln/detail/CVE-2018-18585