Primary

Context

cross-zip Directory Traversal Vulnerability Allowing Arbitrary File Access

Vulnerability

A directory traversal vulnerability has been identified in all versions of the cross-zip package. This issue arises from the consecutive use of the zipSync() and unzipSync() functions, which can accept arguments like __dirname. Exploitation of this vulnerability allows an attacker to access sensitive system files by strategically performing zip and unzip operations.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive system files, such as application source code or configuration files.

Reproduction

The vulnerability can be reproduced by creating a zip file that includes a sensitive system file, such as '/etc/passwd', and then unzipping it in a directory where the file can be accessed. This can be done using the cross-zip package's zipSync() and unzipSync() functions.

Added: Oct 10, 2025, 5:18 AM

Updated: Oct 10, 2025, 5:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

cross-zip Directory Traversal Vulnerability Allowing Arbitrary File Access

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating