Archiver Project Archiver — known CVE vulnerabilities
Every CVE whose affected-product data names Archiver Project Archiver, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-1002207 — CVSS 5.5 (medium): mholt/archiver golang package before e4ef56d48eb029648b0e895bb0b6a393ef0829c3 is vulnerable to directory traversal, allowing attackers to…
CVE-2019-10743 — CVSS 5.5 (medium): All versions of archiver allow attacker to perform a Zip Slip attack via the "unarchive" functions. It is exploited using a specially…