ROSA LABROSA-SA-2021-1907Advisory ROSA-SA-2021-1907
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
10 High
AI Score
Confidence
High
0.953 High
EPSS
Percentile
99.4%
Software: libzip 0.10.1
OS: Cobalt 7.9
CVE-ID: CVE-2015-2331
CVE-Crit: HIGH
CVE-DESC: An integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6. 7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code through a ZIP archive containing many entries, resulting in a heap-based buffer overflow.
CVE-STATUS: default
CVE-REV: default
CVE-ID: CVE-2017-14107
CVE-Crit: MEDIUM
CVE-DESC: The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 incorrectly handles EOCD entries, allowing remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a created ZIP archive.
CVE-STATUS: default
CVE-REV: default
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
10 High
AI Score
Confidence
High
0.953 High
EPSS
Percentile
99.4%