Lucene search
HistoryAug 30, 2023 - 10:15 p.m.
CVE-2023-39135
zip swift v2.1.2
path traversal attack
vulnerability
crafted zip entry
cve-2023-39135
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
20.2%
An issue in Zip Swift v2.1.2 allows attackers to execute a path traversal attack via a crafted zip entry.
Affected configurations
Node
marmelroyzipMatch2.1.2
Related
osv
osv
Path traversal in Zip Swift
2023-08-31 00:30:17
CVE-2023-39135
2023-08-30 22:15:08
gitlab
gitlab
Path traversal in Zip Swift
2023-08-31 00:00:00
veracode
veracode
Path Traversal
2023-09-01 11:24:44
github
github
Path traversal in Zip Swift
2023-08-31 00:30:17
cve
cve
CVE-2023-39135
2023-08-30 22:15:08
prion
prion
Path traversal
2023-08-30 22:15:00
cvelist
cvelist
CVE-2023-39135
2023-08-30 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
20.2%
Related for NVD:CVE-2023-39135