CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12418

Archive.java in Junrar before 1.0.1, as used in Apache Tika and other products, is affected by a denial of service vulnerability due to an infinite loop when handling corrupt RAR files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.9%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/junrar/junrar/commit/ad8d0ba8e155630da8a1215cee3f253e0af45817
https://github.com/junrar/junrar/pull/8
https://github.com/junrar/junrar/commit/ad8d0ba8e155630da8a1215cee3f253e0af45817
https://github.com/junrar/junrar/pull/8

Products affected by CVE-2018-12418

Junrar Project » Junrar » Version: N/A

cpe:2.3:a:junrar_project:junrar:-
Junrar Project » Junrar » Version: 0.6

cpe:2.3:a:junrar_project:junrar:0.6
Junrar Project » Junrar » Version: 0.7

cpe:2.3:a:junrar_project:junrar:0.7
Junrar Project » Junrar » Version: 1.0.0

cpe:2.3:a:junrar_project:junrar:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12418

Products

Pricing

Contact Us