CVE-2023-39139
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2023-39139 is a newly discovered vulnerability in Archive v3.3.7. This issue permits attackers to perform a path traversal attack by extracting a specially crafted zip file. Successful exploitation of this vulnerability could result in the execution of malicious code or unauthorized access to sensitive data. Users are strongly advised to update to the latest version of Archive as soon as possible to mitigate this risk. Attackers can exploit this vulnerability by tricking users into extracting a malicious zip file, leading to potentially serious consequences. The impact of this issue underscores the importance of maintaining software up-to-date to protect against known vulnerabilities.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Archive Project