CVE-2018-1002209

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-1002209
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1002209.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-1002209
Downstream
Related
Published
2018-07-25T17:29:02Z
Modified
2025-10-21T04:26:23.419713Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVSS Calculator
Summary
[none]
Details

QuaZIP before 0.7.6 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.

References

Affected packages

Git / github.com/stachenov/quazip

Affected ranges

Type
GIT
Repo
https://github.com/stachenov/quazip
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
5d2fc16a1976e5bf78d2927b012f67a2ae047a98

Affected versions

0.*

0.7.4
0.7.5

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "84964277813786453156411166944239017136",
                "59897822795453575447970311536300491678",
                "306976697354534563421295546789655473125",
                "335682323187728135243461504599500553478",
                "152976444422131803573926974723964094947",
                "73799363749511098164724380682367545767",
                "5199962883936935214637400425697098444",
                "153683394390425474534542507607209895332",
                "156326942548743847085489057365476549702",
                "147977500324481807428722503365978817871",
                "55370485735271755551428634525445725220",
                "131297334797943774484266724209053092715",
                "79675462769164938573799224952225074651",
                "31684057245133976800433242111554139941",
                "190262990600750357696718075035660272994",
                "212330602770991623463900733786892947643",
                "71288939177005413155285182344556432331",
                "244161016006634323882873870714274064526",
                "257009830194572049010835760645789110401",
                "21748362017839608824212572698353222776",
                "320230813632367292764139879990597767951",
                "267702786370664760027401400573633829084",
                "87575832289270323765301719332422330542",
                "93877977589678444488245305182860234557",
                "297992689814009858746551275724640271283",
                "273971235034206828052317207047613345660",
                "71288939177005413155285182344556432331",
                "244161016006634323882873870714274064526",
                "257009830194572049010835760645789110401",
                "21748362017839608824212572698353222776",
                "320230813632367292764139879990597767951",
                "267702786370664760027401400573633829084",
                "87575832289270323765301719332422330542"
            ]
        },
        "target": {
            "file": "qztest/testjlcompress.cpp"
        },
        "source": "https://github.com/stachenov/quazip/commit/5d2fc16a1976e5bf78d2927b012f67a2ae047a98",
        "id": "CVE-2018-1002209-13338b17",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "151304024063569249164932340670981340713",
            "length": 414.0
        },
        "target": {
            "file": "qztest/testjlcompress.cpp",
            "function": "TestJlCompress::extractDir_data"
        },
        "source": "https://github.com/stachenov/quazip/commit/5d2fc16a1976e5bf78d2927b012f67a2ae047a98",
        "id": "CVE-2018-1002209-1a0d75d8",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "231169186614628685644914734545396177008",
            "length": 583.0
        },
        "target": {
            "file": "quazip/JlCompress.cpp",
            "function": "JlCompress::extractDir"
        },
        "source": "https://github.com/stachenov/quazip/commit/5d2fc16a1976e5bf78d2927b012f67a2ae047a98",
        "id": "CVE-2018-1002209-53eb81de",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "11103257041787783009072100717101844563",
                "327175967503350174501014185862462445356",
                "329278571730566616470825361418110010652",
                "197178668388265780419153273824263615926",
                "223370957857944527227943161647235919015",
                "199850395651935671312889671924375665285",
                "173499849326900857809745821282035421569",
                "238335914204822262067363816587639538663"
            ]
        },
        "target": {
            "file": "quazip/JlCompress.cpp"
        },
        "source": "https://github.com/stachenov/quazip/commit/5d2fc16a1976e5bf78d2927b012f67a2ae047a98",
        "id": "CVE-2018-1002209-b4afd939",
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "signature_type": "Function",
        "digest": {
            "function_hash": "217693521649384532664589834376889482998",
            "length": 1756.0
        },
        "target": {
            "file": "qztest/testjlcompress.cpp",
            "function": "TestJlCompress::extractDir"
        },
        "source": "https://github.com/stachenov/quazip/commit/5d2fc16a1976e5bf78d2927b012f67a2ae047a98",
        "id": "CVE-2018-1002209-fdf43869",
        "deprecated": false,
        "signature_version": "v1"
    }
]