Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

81 matches found

Github Security Blog
Github Security Blogadded 2022/02/01 4:22 p.m.23 views

Path Traversal in SharpZipLib

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5.3CVSS1.6AI score0.00378EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2022/02/01 4:22 p.m.13 views

GHSA-2X7H-96H5-RQ84 Path Traversal in SharpZipLib

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

4CVSS4.8AI score0.00378EPSS
Exploits1References5
OSV
OSVadded 2022/02/01 4:22 p.m.24 views

GHSA-M22M-H4RF-PWQ3 Path Traversal in SharpZipLib

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

7.3CVSS8.5AI score0.01545EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2022/02/01 4:22 p.m.33 views

Path Traversal in SharpZipLib

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

9.8CVSS4.1AI score0.01545EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.6 views

Mageia: Security Advisory (MGASA-2021-0541)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References5
NVD
NVDadded 2022/01/26 10:15 p.m.6 views

CVE-2021-32841

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5.3CVSS0.00378EPSS
Exploits1References3
OSV
OSVadded 2022/01/26 10:15 p.m.11 views

CVE-2021-32841

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5.3CVSS7.2AI score
Exploits0References3
Prion
Prionadded 2022/01/26 10:15 p.m.15 views

Arbitrary file deletion

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5CVSS5.3AI score0.00378EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2022/01/26 10:15 p.m.0 views

UBUNTU-CVE-2021-32841

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5.3CVSS5.9AI score0.00378EPSS
Exploits1References5
UbuntuCve
UbuntuCveadded 2022/01/26 10:15 p.m.13 views

CVE-2021-32841

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.3.0 and prior to version 1.3.3, a check was added if the destination file is under destination directory. However, it is not enforced that destDir ends with slash. If the destDir is not slash terminated like...

5.3CVSS6.1AI score0.00378EPSS
Exploits1References4
NVD
NVDadded 2022/01/26 9:15 p.m.5 views

CVE-2021-32840

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

9.8CVSS0.01545EPSS
Exploits1References3
NVD
NVDadded 2022/01/26 9:15 p.m.6 views

CVE-2021-32842

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.0.0 and prior to version 1.3.3, a check was added if the destination file is under a destination directory. However, it is not enforced that baseDirectory ends with slash. If the baseDirectory is not slash terminated...

5.3CVSS0.00298EPSS
Exploits1References2
OSV
OSVadded 2022/01/26 9:15 p.m.6 views

CVE-2021-32842

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.0.0 and prior to version 1.3.3, a check was added if the destination file is under a destination directory. However, it is not enforced that baseDirectory ends with slash. If the baseDirectory is not slash terminated...

5.3CVSS7.2AI score
Exploits0References2
OSV
OSVadded 2022/01/26 9:15 p.m.13 views

CVE-2021-32840

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

9.8CVSS7.6AI score
Exploits0References3
UbuntuCve
UbuntuCveadded 2022/01/26 9:15 p.m.20 views

CVE-2021-32842

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.0.0 and prior to version 1.3.3, a check was added if the destination file is under a destination directory. However, it is not enforced that baseDirectory ends with slash. If the baseDirectory is not slash terminated...

5.3CVSS6.1AI score0.00298EPSS
Exploits1References3
OSV
OSVadded 2022/01/26 9:15 p.m.0 views

UBUNTU-CVE-2021-32840

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

9.8CVSS5.9AI score0.01545EPSS
Exploits1References5
Prion
Prionadded 2022/01/26 9:15 p.m.9 views

Remote code execution

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

7.5CVSS9.6AI score0.01545EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCveadded 2022/01/26 9:15 p.m.20 views

CVE-2021-32840

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in version 1.3.3...

9.8CVSS7.2AI score0.01545EPSS
Exploits1References4
OSV
OSVadded 2022/01/26 9:15 p.m.0 views

UBUNTU-CVE-2021-32842

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.0.0 and prior to version 1.3.3, a check was added if the destination file is under a destination directory. However, it is not enforced that baseDirectory ends with slash. If the baseDirectory is not slash terminated...

5.3CVSS5.8AI score0.00298EPSS
Exploits1References4
Prion
Prionadded 2022/01/26 9:15 p.m.13 views

Arbitrary file deletion

SharpZipLib or ziplib is a Zip, GZip, Tar and BZip2 library. Starting version 1.0.0 and prior to version 1.3.3, a check was added if the destination file is under a destination directory. However, it is not enforced that baseDirectory ends with slash. If the baseDirectory is not slash terminated...

5CVSS5.3AI score0.00298EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder