Lucene search
GoogleOSV:CVE-2021-23484HistoryJan 28, 2022 - 10:15 p.m.
CVE-2021-23484
2022-01-2822:15:09
Google
osv.dev
4
cve-2021-23484
arbitrary file write
archive extraction
zip slip
crafted file
extraction directory
software
The package zip-local before 0.3.5 are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) which can lead to an extraction of a crafted file outside the intended extraction directory.
Related
veracode
veracode
Arbitrary File Write
2022-01-31 10:32:25
osv
osv
Exposure of Resource to Wrong Sphere in Zip-Local
2022-02-01 00:46:01
cvelist
cvelist
CVE-2021-23484 Arbitrary File Write via Archive Extraction (Zip Slip)
2022-01-28 21:31:29
github
github
Exposure of Resource to Wrong Sphere in Zip-Local
2022-02-01 00:46:01
nvd
nvd
CVE-2021-23484
2022-01-28 22:15:09
cve
cve
CVE-2021-23484
2022-01-28 22:15:09
prion
prion
Directory traversal
2022-01-28 22:15:00