CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Libzip: >> Libzip >> 0.11 Security Vulnerabilities

CVE-2017-14107

The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive.

CVSS Score

6.5

EPSS Score

0.012

Published

2017-09-01

Page 1

Vulnerabilities

Vulnerable Software

Libzip: >> Libzip >> 0.11 Security Vulnerabilities

Products

Pricing

Contact Us