Vulnerabilities > Codehaus Plexus > Plexus Archiver > 2.2

DATE CVE VULNERABILITY TITLE RISK
2023-07-25 CVE-2023-37460 UNIX Symbolic Link (Symlink) Following vulnerability in Codehaus-Plexus Plexus-Archiver
Plexis Archiver is a collection of Plexus components to create archives or extract archives to a directory with a unified `Archiver`/`UnArchiver` API.
network
low complexity
codehaus-plexus CWE-61
critical
 9.8
9.8
2018-07-25 CVE-2018-1002200 Path Traversal vulnerability in multiple products
plexus-archiver before 3.6.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction.
local
low complexity
codehaus-plexus redhat debian CWE-22
5.5
5.5