7-Zip p7zip 9.20.1

CPE Details

7-Zip p7zip 9.20.1
7-zip
p7zip
9.20.1
2015-01-22
16h45 +00:00
2015-01-26
13h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:7-zip:p7zip:9.20.1:*:*:*:*:*:*:*

Informations

Vendor

7-zip

Product

p7zip

Version

9.20.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-5996 2018-01-31 17h00 +00:00 Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
7.8
High
CVE-2017-17969 2018-01-30 15h00 +00:00 Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive.
7.8
High
CVE-2015-1038 2015-01-21 17h00 +00:00 p7zip 9.20.1 allows remote attackers to write to arbitrary files via a symlink attack in an archive.
5.8
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.