CVE-2022-44900
CVSS v3.1
9.1 (Critical)
EPSS
1.01 % (84th)
Affected Products
1
Advisories
2
A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file.
Weaknesses
- CWE-22
- Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2022-12-06 20:15:10
(21 months ago) - Updated Date
-
2022-12-09 14:28:53
(21 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...