Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-10284
CVE-2025-10284
BBOT's unarchive module could be abused by supplying malicious archives files and when extracted can then perform an arbitrary file write, resulting in remote code execution.
Published Oct 10, 2025
https://github.com/advisories/GHSA-fhw8-8v9p-7jp7
CVSS Score
High
8.7
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
pypi
bbot
2.3.0.5809rc0
pypi
bbot
2.3.1.5815rc0
pypi
bbot
2.3.1.5818rc0
pypi
bbot
2.3.1.5820rc0
pypi
bbot
2.3.1
pypi
bbot
2.3.2.5825rc0
pypi
bbot
2.3.2.5827rc0
pypi
bbot
2.3.2.5829rc0
pypi
bbot
2.3.2.5832rc0
pypi
bbot
2.3.2.5836rc0
pypi
bbot
2.3.2.5838rc0
pypi
bbot
2.3.2.5841rc0
pypi
bbot
2.3.2.5848rc0
pypi
bbot
2.3.2.5850rc0
pypi
bbot
2.3.2.5855rc0
pypi
bbot
2.3.2.5874rc0
pypi
bbot
2.3.2.5889rc0
pypi
bbot
2.3.2.5893rc0
pypi
bbot
2.3.2.5897rc0
pypi
bbot
2.3.2.5904rc0
pypi
bbot
2.3.2.5906rc0
pypi
bbot
2.3.2.5909rc0
pypi
bbot
2.3.2.5913rc0
pypi
bbot
2.3.2.5915rc0
pypi
bbot
2.3.2.5927rc0
pypi
bbot
2.3.2.5938rc0
pypi
bbot
2.3.2.5942rc0
pypi
bbot
2.3.2.5944rc0
pypi
bbot
2.3.2.5950rc0
pypi
bbot
2.3.2.5958rc0
pypi
bbot
2.3.2.5967rc0
pypi
bbot
2.3.2.5971rc0
pypi
bbot
2.3.2
pypi
bbot
2.4.0.5974rc0
pypi
bbot
2.4.0.5977rc0
pypi
bbot
2.4.0.5984rc0
pypi
bbot
2.4.0.5986rc0
pypi
bbot
2.4.0.5988rc0
pypi
bbot
2.4.0.5992rc0
pypi
bbot
2.4.0.5995rc0
pypi
bbot
2.4.0.5997rc0
pypi
bbot
2.4.0.5999rc0
pypi
bbot
2.4.0.6005rc0
pypi
bbot
2.4.0.6007rc0
pypi
bbot
2.4.0.6031rc0
pypi
bbot
2.4.0.6037rc0
pypi
bbot
2.4.0.6039rc0
pypi
bbot
2.4.0.6045rc0
pypi
bbot
2.4.0.6050rc0
pypi
bbot
2.4.0.6067rc0
1-50 of 130
CVE-2025-10284 | Components Impacted | Sonatype Guide | Sonatype Guide
