Lucene search

CVE-2018-11771

🗓️ 16 Aug 2018 15:00:29Reported by apacheType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 102 Views

Apache Commons Compress 1.7 to 1.17 ZIP ArchiveInputStream vulnerability

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 36
Fedora	[SECURITY] Fedora 28 Update: apache-commons-compress-1.16.1-2.fc28	19 Oct 201816:08	–	fedora
Fedora	[SECURITY] Fedora 29 Update: apache-commons-compress-1.17-3.fc29	9 Oct 201800:08	–	fedora
OSV	UBUNTU-CVE-2018-11771	16 Aug 201815:29	–	osv
OSV	CVE-2018-11771	16 Aug 201815:29	–	osv
OSV	GHSA-HRMR-F5M6-M9PQ Moderate severity vulnerability that affects org.apache.commons:commons-compress	19 Oct 201816:41	–	osv
OSV	MGASA-2019-0001 Updated pache-commons-compress packages fix security vulnerabilities	5 Jan 201918:30	–	osv
IBM Security Bulletins	Security Bulletin: IBM Network Performance Insight (CVE-2018-11771)	12 Nov 201803:50	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in Apache Commons Compress may affect IBM Cloud App Management V2018	3 May 201915:45	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in Apache Commons Compress affects IBM InfoSphere Information Server connectivity componets	6 Dec 201919:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Open Source used in IBM Cloud Pak System	7 Jul 202016:58	–	ibm

Nvd

Vulners

Node

apache commons_compressRange1.7.0–1.17.0

Node

oracle weblogic_serverMatch14.1.1.0.0

[
  {
    "product": "Apache Commons Compress",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "1.7 to 1.17"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread.html/0adb631517766e793e18a59723e2df08ced41eb9a57478f14781c9f7%40%3Cdev.tinkerpop.apache.org%3E
securityfocus	www.securityfocus.com/bid/105139
lists	www.lists.apache.org/thread.html/35f60d6d0407c13c39411038ba1aca71d92595ed7041beff4d07f2ee%40%3Ccommits.tinkerpop.apache.org%3E
lists	www.lists.apache.org/thread.html/f28052d04cb8dbaae39bfd3dc8438e58c2a8be306a3f381f4728d7c1%40%3Ccommits.commons.apache.org%3E
lists	www.lists.apache.org/thread.html/c7954dc1e8fafd7ca1449f078953b419ebf8936e087f235f3bd024be%40%3Ccommits.tinkerpop.apache.org%3E
oracle	www.oracle.com/security-alerts/cpujan2022.html
lists	www.lists.apache.org/thread.html/3565494c263dfeb4dcb2a71cb24d09a1ca285cd6ac74edc025a3af8a%40%3Ccommits.tinkerpop.apache.org%3E
lists	www.lists.apache.org/thread.html/b907e70bc422905d7962fd18f863f746bf7b4e7ed9da25c148580c61%40%3Cnotifications.commons.apache.org%3E
lists	www.lists.apache.org/thread.html/eeecc1669242b28a3777ae13c68b376b0148d589d3d8170340d61120%40%3Cdev.tinkerpop.apache.org%3E
lists	www.lists.apache.org/thread.html/f9cdd32af7d73e943452167d15801db39e8130409ebb9efb243b3f41%40%3Ccommits.tinkerpop.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Aug 2018 15:29Current

5.3Medium risk

Vulners AI Score5.3

CVSS24.3

CVSS35.5

EPSS0.00917

CWE-835