Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2023/01/06 12:0 a.m.2 views

JATOS 路径遍历漏洞

JATOS is another tool for online learning. JATOS suffers from a path traversal vulnerability that originates in the function ZipUtil in the file modules/common/app/utils/common/ZipUtil.java of the component ZIP Handler, which manipulates to cause path traversal...

5.5CVSS5.5AI score0.00282EPSS
Exploits0References5
Veracode
Veracodeadded 2022/12/18 8:41 p.m.45 views

Denial Of Service (DoS)

cn.hutool:hutool-core is vulnerable to denial of service DoS attacks. A malicious user is able to cause excessive resource consumption due to improper decompression mechanisms in multiple functions of ZipUtil.java, resulting in an application crash...

7.5CVSS7AI score0.00273EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blogadded 2022/12/16 9:30 p.m.40 views

HuTool vulnerable to Uncontrolled Resource Consumption

A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the...

7.5CVSS7.5AI score0.00273EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/12/16 7:15 p.m.14 views

CVE-2022-4565

A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the...

7.5CVSS7.7AI score
Exploits0References2
Prion
Prionadded 2022/12/16 7:15 p.m.18 views

Spoofing

A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the...

5CVSS7.6AI score0.00273EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.12 views

CVE-2022-4565 Dromara HuTool cn.hutool.core.util.ZipUtil.java resource consumption

A vulnerability classified as problematic was found in Dromara HuTool up to 5.8.10. This vulnerability affects unknown code of the file cn.hutool.core.util.ZipUtil.java. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the...

4.3CVSS7.8AI score0.00273EPSS
Exploits1References2
CVE
CVEadded 2018/09/21 6:0 a.m.65 views

CVE-2018-17297

The vulnerability CVE-2018-17297 affects Hutool’s ZipUtil unzip implementation prior to 4.1.12, where directory traversal in a ZIP entry filename can overwrite arbitrary files. This is triggered during extraction of ZIP archives and has potential to impact file integrity on the host system. Affec...

7.5CVSS7.4AI score0.00425EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder