Home / Early Warning / Vulnerabilidades / CVE-2020-18442

CVE-2020-18442

Type: 
Unavailable / Other
Severity: 
Low
Publication date: 
06/18/2021
Last modified: 
07/01/2021
Description
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
Impact
Access Vector: Local
Access Complexity: Low
Authentication: Not required to exploit
Impact Type: No impact on system integrity + No impact on system confidentiality + Partially affects on system availability
Vulnerable software and versions
  • cpe:2.3:a:zziplib_project:zziplib:0.13.69:*:*:*:*:*:*:*
To consult the complete list of products and versions see this page
References to Advisories, Solutions, and Tools
Explanation of fields