Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a … (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.

References

github.com/gdraheim/zziplib/issues/62

centos 1

oraclelinux 2

nessus 19

redhat 2

almalinux 1

openvas 5

cbl_mariner 2

veracode 1

redhatcve 1

ubuntucve 1

osv 4

amazon 1

rocky 1

suse 2

alpinelinux 1

debiancve 1

cve 1

nvd 1

prion 1

mageia 1

centos

zziplib security update

2020-04-08 20:12:32

oraclelinux

zziplib security update

2020-05-05 00:00:00

zziplib security update

2020-04-06 00:00:00

nessus

Amazon Linux 2 : zziplib (ALAS-2020-1551)

2020-10-27 00:00:00

Scientific Linux Security Update : zziplib on SL7.x x86_64 (20200407)

2020-04-21 00:00:00

RHEL 8 : zziplib (RHSA-2020:1653)

2020-04-28 00:00:00

redhat

(RHSA-2020:1178) Moderate: zziplib security update

2020-03-31 09:28:43

(RHSA-2020:1653) Moderate: zziplib security update

2020-04-28 09:01:25

almalinux

Moderate: zziplib security update

2020-04-28 09:01:25

openvas

SUSE: Security Advisory (SUSE-SU-2018:3220-1)

2021-06-09 00:00:00

openSUSE: Security Advisory for zziplib (openSUSE-SU-2018:3446-1)

2018-10-26 00:00:00

openSUSE: Security Advisory for zziplib (openSUSE-SU-2018:3314-1)

2018-10-26 00:00:00

cbl_mariner

CVE-2018-17828 affecting package zziplib for versions less than 0.13.69-8

2023-01-27 21:29:56

CVE-2018-17828 affecting package zziplib for versions less than 0.13.69-8

2023-01-27 21:29:56

veracode

Arbitrary File Write

2018-10-02 07:40:14

redhatcve

CVE-2018-17828

2018-10-03 20:49:48

ubuntucve

CVE-2018-17828

2018-10-01 00:00:00

osv

CVE-2018-17828

2018-10-01 08:29:01

Moderate: zziplib security update

2020-04-28 09:01:25

Moderate: zziplib security update

2020-04-28 09:01:25

amazon

Medium: zziplib

2020-10-22 18:44:00

rocky

zziplib security update

2020-04-28 09:01:25

suse

Security update for zziplib (moderate)

2018-10-25 18:18:12

Security update for zziplib (moderate)

2018-10-23 15:15:12

alpinelinux

CVE-2018-17828

2018-10-01 08:29:01

debiancve

CVE-2018-17828

2018-10-01 08:29:01

cve

CVE-2018-17828

2018-10-01 08:29:01

nvd

CVE-2018-17828

2018-10-01 08:29:01

prion

Directory traversal

2018-10-01 08:29:00

mageia

Updated zziplib packages fix security vulnerability

2019-02-21 01:18:01

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

5.4

Confidence

High

EPSS

0.001

Percentile

24.7%

JSON

Related for CVELIST:CVE-2018-17828