📦

pigz

Vendor: zlib

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 6 Total Indexed

Avg. EPSS 0.27% Exploit Prob.

Latest CVE CVE-2015-1191 Jan 21

Security Vulnerability Index

Page 1 / 1

5.0 CVSS

CVE-2015-1191

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a (1) full pathname or (2) .. (dot dot) in an archive.

EPSS: 0.49%

Severity: MEDIUM

Jan 21, 2015

4.4 CVSS

CVE-2013-0296

Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring.

EPSS: 0.04%

Severity: MEDIUM

Apr 27, 2014

Displaying 2 of 6 Total Entries

Total 1 Sections