A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record' function's parameter length value in the ark library. Remote attackers can induce exploit malicious code using this function.
Max CVSS
9.8
EPSS Score
0.49%
Published
2022-04-01
Updated
2022-04-08
Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory.
Max CVSS
6.9
EPSS Score
0.04%
Published
2014-02-14
Updated
2017-08-29
2 vulnerabilities found