Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-52187

Malicious code in bioql PyPI...

8.8CVSS8.1AI score0.0093EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: minizip-ng (TSSA-2025:0124)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0124 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS8.1AI score0.0093EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.6 views

The vulnerability of the mz_path_has_slash() function in the minizip-ng library, which is used for working with zip files, allows a hacker to execute arbitrary code.

The vulnerability of the mzpathhasslash function in the minizip-ng library for working with zip files is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

10CVSS8.2AI score0.0126EPSS
Exploits1References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/01 12:0 a.m.6 views

The vulnerability of the mz_path_resolve() function in the minizip-ng library allows a hacker to execute arbitrary code.

The vulnerability of the mzpathresolve function in the minizip-ng library related to buffer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.0093EPSS
Exploits1References3Affected Software2
Redos
Redos
added 2024/03/28 12:0 a.m.25 views

ROS-20240328-13

A vulnerability in the mzpathresolve function in zlib-ng minizip-ng is related to a buffer overflow via the created file of the mzpathhasslash function in the mzos.c file. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the...

8.8CVSS8.5AI score0.0126EPSS
Exploits2
OpenVAS
OpenVAS
added 2023/12/28 12:0 a.m.11 views

Fedora: Security Advisory for minizip-ng (FEDORA-2023-2ca76c3aae)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.0126EPSS
Exploits1References2
Fedora
Fedora
added 2023/12/27 3:17 a.m.22 views

[SECURITY] Fedora 38 Update: minizip-ng-3.0.7-4.fc38

Minizip-ng zlib-ng contribution that includes: AES encryption I/O buffering PKWARE disk splitting It also has the latest bug fixes that having been found all over the internet...

8.8CVSS8.8AI score0.0126EPSS
Exploits1
Fedora
Fedora
added 2023/12/27 1:30 a.m.34 views

[SECURITY] Fedora 39 Update: minizip-ng-3.0.7-5.fc39

Minizip-ng zlib-ng contribution that includes: AES encryption I/O buffering PKWARE disk splitting It also has the latest bug fixes that having been found all over the internet...

8.8CVSS8.8AI score0.0126EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/12/27 12:0 a.m.8 views

Fedora: Security Advisory (FEDORA-2023-5aa1ebc5e9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.0126EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/12/26 12:0 a.m.22 views

Fedora 38 : minizip-ng (2023-2ca76c3aae)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-2ca76c3aae advisory. Fix for CVE-2023-48107 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

8.8CVSS7.6AI score0.0126EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/12/26 12:0 a.m.14 views

Fedora 39 : minizip-ng (2023-5aa1ebc5e9)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-5aa1ebc5e9 advisory. Fix for CVE-2023-48107 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

8.8CVSS7.6AI score0.0126EPSS
Exploits1References2
OSV
OSV
added 2023/11/22 11:15 p.m.17 views

CVE-2023-48107

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

8.8CVSS7.6AI score
Exploits0References5
NVD
NVD
added 2023/11/22 11:15 p.m.13 views

CVE-2023-48107

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

8.8CVSS0.0126EPSS
Exploits1References5
Prion
Prion
added 2023/11/22 11:15 p.m.19 views

Buffer overflow

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

6.8CVSS7.9AI score0.0126EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/11/22 6:15 p.m.15 views

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

8.8CVSS0.0093EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/11/22 6:15 p.m.3 views

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

8.8CVSS6.2AI score0.0093EPSS
Exploits1References2
OSV
OSV
added 2023/11/22 6:15 p.m.13 views

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

8.8CVSS7.7AI score
Exploits0References1
Prion
Prion
added 2023/11/22 6:15 p.m.18 views

Buffer overflow

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

6.8CVSS8AI score0.0093EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.2 views

minizip-ng Security Vulnerabilities

minizip-ng is a zip manipulation library for zlib-ng written in C and supported on Windows, macOS, and Linux. A security vulnerability in zlib-ng minizip-ng version 4.0.2 exists that could allow an attacker to execute arbitrary code via the mzpathresolve function in the mzos.c file...

8.8CVSS7.6AI score0.0093EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/22 12:0 a.m.4 views

PT-2023-8864 · Unknown +1 · Minizip-Ng +1

Name of the Vulnerable Software and Affected Versions: minizip-ng version 4.0.2 Description: The issue is related to a Buffer Overflow vulnerability in the mz path has slash function, located in the mz os.c file, which can be exploited by an attacker using a crafted file. This could allow a remot...

10CVSS8.6AI score0.0126EPSS
Exploits2References12
Rows per page
Query Builder