All 6 CVE vulnerabilities found in NanaZip, with AI-generated Chinese analysis, references, and POCs.
Vendor: M2Team
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27711 | NanaZip UFS Archive Parser Memory Corruption via Unvalidated Directory Record Length CWE-125 | 7.8AI | HighAI | 2026-02-25 |
| CVE-2026-27710 | NanaZip .NET Single-File Parser Integer Underflow Leads to Unbounded Allocation (DoS) CWE-191 | 7.5AI | HighAI | 2026-02-25 |
| CVE-2026-27709 | NanaZip .NET Single-File Manifest Parser Vulnerable to Out-of-Bounds Read via Unchecked RelativePathLength CWE-125 | 9.1AI | CriticalAI | 2026-02-25 |
| CVE-2026-27114 | NanaZip has ROMFS Archive Infinite Loop CWE-835 | 7.5 | - | 2026-02-19 |
| CVE-2026-27014 | NanZip has ROMFS Archive Infinite Loop / Stack Overflow CWE-674 | 6.2 | - | 2026-02-19 |
| CVE-2026-26282 | NanaZip has DotNet Single file OOB Heap Read CWE-126 | 7.1 | - | 2026-02-19 |
All 6 known CVE vulnerabilities affecting NanaZip with full Chinese analysis, references, and POCs where available.