This affects all versions of package github.com/u-root/u-root/pkg/uzip. It is vulnerable to both leading and non-leading relative path traversal attacks in zip file extraction.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
u-root u-root |