SnykCVELIST:CVE-2020-7667CVE-2020-7667 Arbitrary File Write via Archive Extraction (Zip Slip)
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.1%
In package github.com/sassoftware/go-rpmutils/cpio before version 0.1.0, the CPIO extraction functionality doesn’t sanitize the paths of the archived files for leading and non-leading “…” which leads in file extraction outside of the current directory. Note: the fixing commit was applied to all affected versions which were re-released.
CNA Affected
[
{
"product": "github.com/sassoftware/go-rpmutils/cpio",
"vendor": "n/a",
"versions": [
{
"lessThan": "0.1.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.1%