Every CVE whose affected-product data names Kde Ark, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2017-5330 — CVSS 7.8 (high): ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated…
CVE-2011-2725 — CVSS 6.8 (medium): Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via…
CVE-2020-16116 — CVSS 3.3 (low): In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory…
CVE-2020-24654 — CVSS 3.3 (low): In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a…