sonatype-2023-0042

sonatype-2023-0042

jszip - Arbitrary File Write via Archive Extraction (Zip Slip)

Published Jan 9, 2023

CVSS ScoreHigh

8.2

sonatype-2023-0042

jszip - Arbitrary File Write via Archive Extraction (Zip Slip)

Published Jan 9, 2023

CVSS ScoreHigh

8.2

CVE ID: sonatype-2023-0042
CWE: N/A
CVE Description: jszip - Arbitrary File Write via Archive Extraction (Zip Slip)
Published: Jan 9, 2023
CVSS Score & Severity: 8.2High
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: GitHub · PR #813PROJECT
stuk.github.ioPROJECT

CVE ID: sonatype-2023-0042
CWE: N/A
CVE Description: jszip - Arbitrary File Write via Archive Extraction (Zip Slip)
Published: Jan 9, 2023
CVSS Score & Severity: 8.2High
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:H
EPSS Score: 0%
Malware: malware
KEV Status: Not in KEV Catalog: No known exploits
Affected Ecosystems: affected
Source: Sonatype
References: GitHub · PR #813PROJECT
stuk.github.ioPROJECT

Find vulnerabilities. Fix fast with AI.