Arj Software Arj Archiver — known CVE vulnerabilities
Every CVE whose affected-product data names Arj Software Arj Archiver, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2015-2782 — CVSS 7.5 (high): Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote attackers to cause a denial of service (crash) or possibly execute…
CVE-2015-0556 — CVSS 5.8 (medium): Open-source ARJ archiver 3.10.22 allows remote attackers to conduct directory traversal attacks via a symlink attack in an ARJ archive.
CVE-2015-0557 — CVSS 5.8 (medium): Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote attackers to conduct absolute…