gdraheim CVE Vulnerabilities & Metrics

Focus on gdraheim vulnerabilities and metrics.

Last updated: 01 Aug 2025, 22:25 UTC

About gdraheim Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with gdraheim. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total gdraheim CVEs: 22
Earliest CVE date: 01 Mar 2017, 15:59 UTC
Latest CVE date: 27 Jun 2024, 21:15 UTC

Latest CVE reference: CVE-2024-39134

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): -100.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): -100.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical gdraheim CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 3.88

Max CVSS: 5.8

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range Count
0.0-3.9 3
4.0-6.9 19
7.0-8.9 0
9.0-10.0 0

CVSS Distribution Chart

Top 5 Highest CVSS gdraheim CVEs

These are the five CVEs with the highest CVSS scores for gdraheim, sorted by severity first and recency.

All CVEs for gdraheim

CVE-2024-39134 gdraheim vulnerability CVSS: 0 27 Jun 2024, 21:15 UTC

A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() function at /zzip/zip.c.

CVE-2020-18770 gdraheim vulnerability CVSS: 0 22 Aug 2023, 19:15 UTC

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

CVE-2020-18442 gdraheim vulnerability CVSS: 2.1 18 Jun 2021, 15:15 UTC

Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".

CVE-2018-17828 gdraheim vulnerability CVSS: 5.8 01 Oct 2018, 08:29 UTC

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.

CVE-2018-16548 gdraheim vulnerability CVSS: 4.3 05 Sep 2018, 21:29 UTC

An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.

CVE-2018-7727 gdraheim vulnerability CVSS: 4.3 06 Mar 2018, 17:29 UTC

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

CVE-2018-7726 gdraheim vulnerability CVSS: 4.3 06 Mar 2018, 17:29 UTC

An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CVE-2018-7725 gdraheim vulnerability CVSS: 4.3 06 Mar 2018, 17:29 UTC

An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.

CVE-2018-6869 gdraheim vulnerability CVSS: 4.3 09 Feb 2018, 06:29 UTC

In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the __zzip_parse_root_directory function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CVE-2018-6542 gdraheim vulnerability CVSS: 4.3 02 Feb 2018, 09:29 UTC

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.

CVE-2018-6541 gdraheim vulnerability CVSS: 4.3 02 Feb 2018, 09:29 UTC

In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CVE-2018-6540 gdraheim vulnerability CVSS: 4.3 02 Feb 2018, 09:29 UTC

In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CVE-2018-6484 gdraheim vulnerability CVSS: 4.3 01 Feb 2018, 05:29 UTC

In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the __zzip_fetch_disk_trailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CVE-2018-6381 gdraheim vulnerability CVSS: 4.3 29 Jan 2018, 17:29 UTC

In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data.

CVE-2017-5981 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file.

CVE-2017-5980 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.

CVE-2017-5979 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.

CVE-2017-5978 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.

CVE-2017-5977 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.

CVE-2017-5976 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.

CVE-2017-5975 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.

CVE-2017-5974 gdraheim vulnerability CVSS: 4.3 01 Mar 2017, 15:59 UTC

Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.