CVE-2022-1271 — Incorrect Behavior Order: Early Validation in Gzip
Severity
8.8HIGHNVD
EPSS
0.8%
top 25.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 31
Latest updateFeb 26
Description
An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to…
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages4 packages
Also affects: Debian Linux 10.0
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-jrpw-543v-8r62: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility↗2022-09-01
OSV▶
CVE-2022-1271: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility↗2022-08-31
CVEList▶
CVE-2022-1271: An arbitrary file write vulnerability was found in GNU gzip's zgrep utility↗2022-08-31
📋Vendor Advisories
9Microsoft▶
An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example a crafted file name) this can overwrite an attacker's↗2022-08-09