Lucene search
K

4 matches found

OSV
OSV
added 2025/09/10 7:50 p.m.6 views

GHSA-MJQP-26HC-GRXG Picklescan: ZIP archive scan bypass is possible through non-exhaustive Cyclic Redundancy Check

Summary Picklescan's ability to scan ZIP archives for malicious pickle files is compromised when the archive contains a file with a bad Cyclic Redundancy Check CRC. Instead of attempting to scan the files within the archive, whatever the CRC is, Picklescan fails in error and returns no results...

9.3CVSS7.1AI score0.01428EPSS
Exploits1References8
OSV
OSV
added 2025/03/10 12:30 p.m.6 views

GHSA-W6MR-MJ53-X258 Duplicate Advisory: Zip Exploit Crashes Picklescan But Not PyTorch

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7q5r-7gvp-wc82. This link is maintained to preserve external references. Original Description picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes it to crash when attempting t...

5.3CVSS6.4AI score0.00307EPSS
Exploits1References4
Rockylinux
Rockylinux
added 2024/12/19 4:17 a.m.15 views

unzip bug fix update

An update is available for unzip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The unzip utility is used to list, test, and extract files from zip archives. B...

7.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:42 a.m.31 views

Security Bulletin: Multiple vulnerabilities in unzip affect IBM Flex System Manager (FSM)

Summary Multiple vulnerabilities have been identified in unzip that is embedded in the FSM. This bulletin addresses these vulnerabilities. Vulnerability Details CVEID: CVE-2016-9844 DESCRIPTION: Info-Zip UnZip is vulnerable to a denial of service, caused by buffer overflow in zishort function in...

4.3CVSS1.2AI score0.06073EPSS
Exploits0Affected Software1
Rows per page
Query Builder