Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Zip Path Traversal in Deepin-Compressor
Vulnerability Description
Deepin-Compressor is the default archive manager of Deepin Linux OS. Prior to 5.12.21, there's a path traversal vulnerability in deepin-compressor that can be exploited to achieve Remote Command Execution on the target system upon opening crafted archives. Users are advised to update to version 5.12.21 which addresses the issue. There are no known workarounds for this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Vulnerability Type
相对路径遍历
Vulnerability Title
Deepin-Compressor 安全漏洞
Vulnerability Description
Deepin-Compressor是一款提供对文件解压、压缩常用功能的软件工具。 Deepin-Compressor 5.12.21之前版本存在安全漏洞,该漏洞源于deepin压缩器存在路径遍历漏洞。攻击者可利用该漏洞通过打开特制的归档文件在目标系统上执行远程命令。
CVSS Information
N/A
Vulnerability Type
N/A