cbcvebase.
CVE-2025-4748
published 2025-06-16

CVE-2025-4748: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal…

PriorityP420medium4.8CVSS 4.0
AVLACLATNPRNUIPVCNVILVALSCNSILSALEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.23%
13.1th percentile
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.

Affected

9 ranges
VendorProductVersion rangeFixed in
debianerlang< erlang 1:25.2.3+dfsg-1+deb12u2 (bookworm)erlang 1:25.2.3+dfsg-1+deb12u2 (bookworm)
erlangotp>= 07b8f441ca711f9812fad9e9115bab3c3aa92f79 < **
erlangotp>= 17.0 < **
erlangotp>= 2.0 < **
msrcazl3_erlang_26.2.5.13-1_on_azure_linux_3.0
msrcazl3_erlang_26.2.5.15-1_on_azure_linux_3.0
msrcazl3_erlang_26.2.5.17-1_on_azure_linux_3.0
msrcazl3_erlang_26.2.5.18-1_on_azure_linux_3.0
msrccbl2_erlang_25.3.2.21-2_on_cbl_mariner_2.0

CVSS provenance

nvdv4.04.8MEDIUMCVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv4.8MEDIUM
vendor_debian4.8MEDIUM
vendor_msrc4.8MEDIUM
vendor_ubuntu3.7LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.