CVE-2018-1261

MEDIUM

Spring Integration Zip < 1.0.1 - Arbitrary File Write via Path Traversal in Archive Extraction

Title source: llm

Description

Spring-integration-zip versions prior to 1.0.1 exposes an arbitrary file write vulnerability, which can be achieved using a specially crafted zip archive (affects other archives as well, bzip2, tar, xz, war, cpio, 7z) that holds path traversal filenames. So when the filename gets concatenated to the target extraction directory, the final path ends up outside of the target folder.

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/104178

Vendor Advisory x_refsource_confirm

https://pivotal.io/security/cve-2018-1261

Scores

CVSS v3 4.7

EPSS 0.0035

EPSS Percentile 57.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

CWE

CWE-22

Status published

Products (2)

org.springframework.integration/spring-integration-zip 0 - 1.0.1Maven

vmware/spring_integration_zip < 1.0.1

Published May 11, 2018

Tracked Since Feb 18, 2026