CVE-2023-0104

The listed versions for Weintek EasyBuilder Pro are vulnerable to a ZipSlip attack caused by decompiling a malicious project file. This may allow an attacker to gain control of the user’s computer or gain access to sensitive data.
Configurations

Configuration 1

No configuration.

Information

Published : 2023-02-22 09:15

Updated : 2023-02-23 02:19


NVD link : CVE-2023-0104

Mitre link : CVE-2023-0104

Products Affected
No products.
CWE
CWE-29

Path Traversal: '..filename'