Lucene search
K

35 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-55186

Malicious code in bioql PyPI...

9.8CVSS7.1AI score0.00348EPSS
Exploits0References2
NVD
NVD
added 2025/06/12 1:15 a.m.12 views

CVE-2022-4976

Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities. The bundled library is affected by CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141...

9.8CVSS0.00348EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/12 12:33 a.m.47 views

CVE-2022-4976 Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities

Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities. The bundled library is affected by CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141...

0.00348EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/12 12:33 a.m.15 views

CVE-2022-4976 Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities

Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities. The bundled library is affected by CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141...

7.2AI score0.00348EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.18 views

CBL Mariner 2.0 Security Update: unzip (CVE-2014-8140)

The version of unzip installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2014-8140 advisory. - Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attacke...

7.8CVSS7.9AI score0.07448EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.14 views

CVE-2014-8140 affecting package unzip for versions less than 6.0-20

CVE-2014-8140 affecting package unzip for versions less than 6.0-20. A patched version of the package is available...

7.8CVSS7.9AI score0.07448EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.35 views

K16480: Multiple unzip vulnerabilities CVE-2014-8139, CVE-2014-8140, and CVE-2014-8141

Security Advisory Description CVE-2014-8139 A buffer overflow flaw was found in the way unzip computed the CRC32 checksum of certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash when the archive was tested with unzip's '-t' option. CVE-2014-8140 An integer...

7.8CVSS7.6AI score0.07448EPSS
Exploits0Affected Software21
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.20 views

Slackware: Security Advisory (SSA:2019-060-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.30469EPSS
Exploits3References2
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.16 views

CVE-2014-8140 affecting package unzip for versions less than 6.0-19

CVE-2014-8140 affecting package unzip for versions less than 6.0-19. A patched version of the package is available...

7.8CVSS7.9AI score0.07448EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2015:0070-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.07448EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2015:0026-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.07448EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2020/10/08 6:9 p.m.16 views

CVE-2014-8140 affecting package unzip 6.0-19

CVE-2014-8140 affecting package unzip 6.0-19. A patched version of the package is available...

7.8CVSS7.5AI score0.07448EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/02 12:0 a.m.36 views

Photon OS 1.0: Unzip PHSA-2020-1.0-0281

An update of the unzip package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0281. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid134208...

7.8CVSS7.4AI score0.07448EPSS
Exploits0References4
CVE
CVE
added 2020/01/31 10:0 p.m.299 views

CVE-2014-8140

CVE-2014-8140 affects Info-ZIP UnZip 6.0 and earlier. The issue is a heap-based buffer overflow in the test_compr_eb function that can be triggered by a crafted ZIP file passed to unzip with the -t option, potentially allowing remote code execution. Several connected advisories confirm the same u...

7.8CVSS8.2AI score0.07448EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2020/01/31 10:0 p.m.27 views

CVE-2014-8140

Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...

7.8CVSS8AI score0.07448EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:28 a.m.38 views

Security Bulletin: Multiple Unzip vulnerabilities affect PowerKVM (Multiple CVEs)

Summary PowerKVM is affected by several vulnerabilities in OpenSSL. Vulnerability Details CVEID: CVE-2014-8139 DESCRIPTION: Info-ZIP UnZip is vulnerable to a heap-based buffer overflow, caused by improper bounds checking within the CRC32 verification. A lo CVSS Base Score: 4.4 CVSS Temporal Score...

7.8CVSS0.7AI score0.11562EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:25 p.m.37 views

Security Bulletin: Vulnerabilities in unzip affect IBM Security Network Protection (CVE-2014-8139, CVE-2014-8140, CVE-2014-8141, and CVE-2014-9636 )

Summary The unzip utility is used to list, test, or extract files from a zip archive. Security vulnerabilities have been discovered in unzip used with IBM Security Network Protection. Vulnerability Details CVE ID: CVE-2014-8139 DESCRIPTION: Info-ZIP UnZip is vulnerable to a heap-based buffer...

7.8CVSS0.5AI score0.11562EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.31 views

Oracle: Security Advisory (ELSA-2015-0700)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.11562EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/09/16 12:0 a.m.36 views

F5 Networks BIG-IP : Multiple unzip vulnerabilities (SOL16480)

A buffer overflow flaw was found in the way unzip computed the CRC32 checksum of certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash when the archive was tested with unzip's '-t' option. C Tenable Network Security, Inc. The descriptive text and package check...

7.8CVSS7AI score0.07448EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/04/17 12:0 a.m.44 views

Amazon Linux AMI : unzip (ALAS-2015-504)

A buffer overflow was found in the way unzip uncompressed certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option. CVE-2014-9636 A buffer overflow flaw was found in the way...

7.8CVSS7.1AI score0.11562EPSS
Exploits0References5
Rows per page
Query Builder