0.001 Low
EPSS
Percentile
35.7%
unzip is vulnerable to denial of service. The vulnerability exists because of the improper handling of Unicode strings, allowing an attacker to crash the application through the null pointer dereference by providing a maliciously crafted zip file.
access.redhat.com/security/cve/CVE-2021-4217
bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077
bugzilla.redhat.com/show_bug.cgi?id=2044583
secdb.alpinelinux.org/edge/main.yaml