Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zziplib project zziplib 0.13.69 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-18770
An issue exists in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.
Zziplib Project Zziplib 0.13.69
5.5
CVSSv3
CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows malicious users to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
Zziplib Project Zziplib 0.13.69
3.3
CVSSv3
CVE-2020-18442
Infinite Loop in zziplib v0.13.69 allows remote malicious users to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
Zziplib Project Zziplib 0.13.69
Debian Debian Linux 9.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
6.5
CVSSv3
CVE-2018-16548
An issue exists in ZZIPlib up to and including 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
Zziplib Project Zziplib
6.5
CVSSv3
CVE-2018-6541
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
Zziplib Project Zziplib 0.13.67
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started