CVE-2022-24615 in zip4jinformation

Résumé

par MITRE • 24/02/2022

zip4j up to 2.9.0 can throw various uncaught exceptions while parsing a specially crafted ZIP file, which could result in an application crash. This could be used to mount a denial of service attack against services that use zip4j library.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

07/02/2022

Divulgation

24/02/2022

Modérer

accepté

Entrée

VDB-193780

CPE

prêt

EPSS

0.00698

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!