Lucene search
K

31 matches found

Amazon
Amazon
added 2025/10/27 12:0 a.m.5 views

Medium: python3.13

Issue Overview: The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be...

4.3CVSS6.7AI score0.00353EPSS
Exploits0
Amazon
Amazon
added 2025/10/27 12:0 a.m.5 views

Medium: python3.11

Issue Overview: The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be...

4.3CVSS6.7AI score0.00353EPSS
Exploits0
OSV
OSV
added 2025/10/14 9:30 a.m.4 views

BIT-PYTHON-MIN-2025-8291 ZIP64 End of Central Directory (EOCD) Locator record offset not checked

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6.8AI score0.00353EPSS
Exploits0References13
OSV
OSV
added 2025/10/14 9:30 a.m.6 views

BIT-PYTHON-2025-8291 ZIP64 End of Central Directory (EOCD) Locator record offset not checked

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6.8AI score0.00353EPSS
Exploits0References13
Microsoft CVE
Microsoft CVE
added 2025/10/10 8:2 a.m.4 views

ZIP64 End of Central Directory (EOCD) Locator record offset not checked

...

4.3CVSS7AI score0.00353EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/07 6:10 p.m.12 views

CVE-2025-8291 ZIP64 End of Central Directory (EOCD) Locator record offset not checked

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS0.00353EPSS
Exploits0References10
OSV
OSV
added 2025/10/07 6:10 p.m.4 views

PSF-2025-12

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6.8AI score0.00353EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 6:10 p.m.3 views

EUVD-2025-32734

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6.3AI score0.00353EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2025/10/07 6:10 p.m.7 views

CVE-2025-8291

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6AI score0.00353EPSS
Exploits0References11Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/07 6:10 p.m.1 views

CVE-2025-8291 ZIP64 End of Central Directory (EOCD) Locator record offset not checked

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS6.4AI score0.00353EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2025/10/07 6:10 p.m.3 views

CVE-2025-8291

The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory EOCD Locator record offset value would not be used to locate the ZIP64 EOCD record, instead the ZIP64 EOCD record would be assumed to be the previous record in the ZIP archive. This could be abused to create Z...

4.3CVSS5.9AI score0.00353EPSS
Exploits0
Rows per page
Query Builder