Vulnerabilities > CVE-2021-26623 - Out-of-bounds Write vulnerability in Bandisoft Bandizip
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record' function's parameter length value in the ark library. Remote attackers can induce exploit malicious code using this function.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 12 | |
| OS | 1 |