0.006 Low
EPSS
Percentile
78.8%
sharpziplib is vulnerable to directory traversal. The vulnerability exists due to the lack of validation that the destination path is under the expected extraction directory.
github.com/icsharpcode/SharpZipLib/commit/a0e96de70b5264f4c919b09253b1522bc7a221cc
github.com/icsharpcode/SharpZipLib/pull/519
github.com/icsharpcode/SharpZipLib/releases/tag/v1.3.3
securitylab.github.com/advisories/GHSL-2021-125-sharpziplib/