dotnetzip.semverd_project CVE Vulnerabilities & Metrics

Focus on dotnetzip.semverd_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About dotnetzip.semverd_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with dotnetzip.semverd_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total dotnetzip.semverd_project CVEs: 2
Earliest CVE date: 25 Jul 2018, 17:29 UTC
Latest CVE date: 13 Nov 2024, 15:15 UTC

Latest CVE reference: CVE-2024-48510

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 1

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical dotnetzip.semverd_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 2.15

Max CVSS: 4.3

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	1
4.0-6.9	1
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS dotnetzip.semverd_project CVEs

These are the five CVEs with the highest CVSS scores for dotnetzip.semverd_project, sorted by severity first and recency.

CVE-2018-1002205 dotnetzip.semverd_project Published on 25 Jul 2018, 17:29 UTC (CVSS: 4.3)
DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
CVE-2024-48510 dotnetzip.semverd_project Published on 13 Nov 2024, 15:15 UTC (CVSS: 0)
Directory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.Shared/ZipEntry.Extract.cs component NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

All CVEs for dotnetzip.semverd_project

CVE-2024-48510 dotnetzip.semverd_project vulnerability CVSS: 0 13 Nov 2024, 15:15 UTC

Directory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.Shared/ZipEntry.Extract.cs component NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVE-2018-1002205 dotnetzip.semverd_project vulnerability CVSS: 4.3 25 Jul 2018, 17:29 UTC

DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.