Zlib-Ng Minizip-Ng vulnerabilities
3 known vulnerabilities affecting zlib-ng/minizip-ng.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-48107HIGHCVSS 8.8v4.0.22023-11-22
CVE-2023-48107 [HIGH] CWE-787 CVE-2023-48107: Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary
Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mz_path_has_slash function in the mz_os.c file.
nvd
CVE-2023-48106HIGHCVSS 8.8v4.0.22023-11-22
CVE-2023-48106 [HIGH] CWE-787 CVE-2023-48106: Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary
Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mz_path_resolve function in the mz_os.c file.
nvd
CVE-2014-9485MEDIUMCVSS 5.5≤ 1.1-42018-01-16
CVE-2014-9485 [MEDIUM] CWE-22 CVE-2014-9485: Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip i
Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.
nvd