A vulnerability arises out of a failure to comprehensively sanitize the processing of a zip file(s). Incomplete neutralization of external commands used to control the process execution of the .zip application allows an authorized user to obtain control of the .zip application to execute arbitrary commands or obtain elevation of system privileges.
References
Link | Resource |
---|---|
https://kcm.trellix.com/corporate/index?page=content&id=SB10403 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trellix
Published: 2023-07-03T08:02:29.010Z
Updated: 2023-07-03T08:02:29.010Z
Reserved: 2023-06-19T08:42:45.707Z
Link: CVE-2023-3314
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-03T09:15:09.590
Modified: 2023-07-11T16:09:33.623
Link: CVE-2023-3314
JSON object: View
Redhat Information
No data.
CWE