CVE-2018-1002202
published 2018-07-25CVE-2018-1002202: zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that…
PriorityP344medium6.5CVSS 3.0
AVNACLPRNUIRSUCNIHAN
EPSS
13.09%
95.9th percentile
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | zip4j | — | — |
| zip4j | zip4j | >= unspecified < 1.3.3 | 1.3.3 |
| zip4j_project | zip4j | < 1.3.3 | 1.3.3 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:P
vendor_debian6.5LOW
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
zip4j: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file
vendor_redhat·2018-06-05·CVSS 6.5
CVE-2018-1002202 [MEDIUM] CWE-20 zip4j: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file
zip4j: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
Package: zip4j (JBoss Developer Studio 11) - Not affected
Package: zip4j (Red Hat JBoss Data Virtualization 6) - Not affected
Debian
CVE-2018-1002202: zip4j - zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to w...
vendor_debian·2018·CVSS 6.5
CVE-2018-1002202 [MEDIUM] CVE-2018-1002202: zip4j - zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to w...
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
Improper Limitation of a Pathname to a Restricted Directory in Zip4j
ghsa·2022-05-13
CVE-2018-1002202 [MEDIUM] CWE-22 Improper Limitation of a Pathname to a Restricted Directory in Zip4j
Improper Limitation of a Pathname to a Restricted Directory in Zip4j
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
OSV
Improper Limitation of a Pathname to a Restricted Directory in Zip4j
osv·2022-05-13
CVE-2018-1002202 [MEDIUM] Improper Limitation of a Pathname to a Restricted Directory in Zip4j
Improper Limitation of a Pathname to a Restricted Directory in Zip4j
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
No detection rules found.
No public exploits indexed.
https://github.com/snyk/zip-slip-vulnerabilityhttps://snyk.io/research/zip-slip-vulnerabilityhttps://snyk.io/vuln/SNYK-JAVA-NETLINGALAZIP4J-31679https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbmu03895en_ushttps://github.com/snyk/zip-slip-vulnerabilityhttps://snyk.io/research/zip-slip-vulnerabilityhttps://snyk.io/vuln/SNYK-JAVA-NETLINGALAZIP4J-31679https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbmu03895en_us
2018-07-25
Published