CVE-2018-1324

MEDIUM

Apache Commons Compress < 1.15 - Infinite Loop

Title source: rule

Description

A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of service attack against services that use Compress' zip package.

Exploits (3)

nomisec STUB
by dawetmaster · poc
https://github.com/dawetmaster/CVE-2018-1324-commons-compress-vulnerable
nomisec STUB
by andikahilmy · poc
https://github.com/andikahilmy/CVE-2018-1324-commons-compress-vulnerable
nomisec STUB
by tafamace · poc
https://github.com/tafamace/CVE-2018-1324

References (7)

Scores

CVSS v3 5.5
EPSS 0.0167
EPSS Percentile 82.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE
CWE-835
Status published
Products (6)
apache/commons_compress 1.11 - 1.15
com.liferay/com.liferay.portal.tools.bundle.support 3.2.7 - 3.7.4Maven
io.takari/commons-compress Maven
oracle/mysql_cluster < 7.4.34
oracle/weblogic_server 14.1.1.0.0
org.apache.commons/commons-compress 1.11 - 1.16Maven
Published Mar 16, 2018
Tracked Since Feb 18, 2026