Skip to main content

Sharpcompress

2 CVEs product

Monthly

CVE-2021-39208 NuGet MEDIUM POC PATCH This Month

SharpCompress is a fully managed C# library to deal with many compression types and formats. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Sharpcompress
NVD GitHub
CVSS 3.1
4.3
EPSS
1.2%
CVE-2018-1002206 NuGet MEDIUM POC PATCH This Month

SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Path Traversal Sharpcompress
NVD GitHub VulDB
CVSS 3.0
5.5
EPSS
2.5%
EPSS 1% CVSS 4.3
MEDIUM POC PATCH This Month

SharpCompress is a fully managed C# library to deal with many compression types and formats. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Sharpcompress
NVD GitHub
EPSS 3% CVSS 5.5
MEDIUM POC PATCH This Month

SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Path Traversal Sharpcompress
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy