CVE-2022-48285

HIGH 7.3

CVSS Score

7.3

EPSS Score

0.0%

EPSS Percentile

0th

loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.

Vendor	n/a
Product	n/a
Published	Jan 29, 2023
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

n/a / n/a

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/Stuk/jszip/commit/2edab366119c9ee948357c02f1206c28566cdf15 mend.io: https://www.mend.io/vulnerability-database/WS-2023-0004 exchange.xforce.ibmcloud.com: https://exchange.xforce.ibmcloud.com/vulnerabilities/244499 github.com: https://github.com/Stuk/jszip/compare/v3.7.1...v3.8.0 security.netapp.com: https://security.netapp.com/advisory/ntap-20240621-0005/