Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.10732
Percentile: 0.93

CVSS Scoring

Affected Products

• cpe:2.3:a:info-zip:unzip:5.50:*:*:*:*:*:*:*
• cpe:2.3:o:sco:openlinux_server:3.1.1:*:*:*:*:*:*:*
• cpe:2.3:o:sco:openlinux_workstation:3.1.1:*:*:*:*:*:*:*

← Back to Home