Ark Security Vulnerabilities and Issues — Ark CVE List

Lucene search

KdeArk

5 matches found

CVE•added 2020/08/03 8:15 p.m.•193 views

CVE-2020-16116

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal.

4.3CVSS3.6AI score0.00534EPSS

CVE•added 2020/09/02 5:15 p.m.•190 views

CVE-2020-24654

In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a write operation to a user's home directory.

4.3CVSS3.5AI score0.00516EPSS

CVE•added 2014/02/04 11:55 p.m.•66 views

CVE-2011-2725

Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.

6.8CVSS6.5AI score0.00612EPSS

CVE•added 2017/03/27 3:59 p.m.•62 views

CVE-2017-5330

ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications.

7.8CVSS7.8AI score0.0117EPSS

CVE•added 2025/02/03 5:15 a.m.•56 views

CVE-2024-57966

libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive.

5CVSS6.9AI score0.00007EPSS