CVE-2018-1000035:

Overview

Severity

High (CVSS 7.8)

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploit Status

Not Exploited

Patch Tuesday

2024-Jun

Released

2020-08-18

Last Updated

2024-06-30

EPSS Score

62.66% (percentile: 98.4%)

Affected Products (10)

Open Source Software

• unzip-6.0-16.cm1.x86_64.rpm on CBL Mariner 1.0 x64
• unzip-debuginfo-6.0-16.cm1.x86_64.rpm on CBL Mariner 1.0 x64
• unzip-6.0-16.cm1.aarch64.rpm on CBL Mariner 1.0 ARM
• unzip-debuginfo-6.0-16.cm1.aarch64.rpm on CBL Mariner 1.0 ARM
• unzip-6.0-19.cm2.x86_64.rpm on CBL Mariner 2.0 x64
• unzip-debuginfo-6.0-19.cm2.x86_64.rpm on CBL Mariner 2.0 x64
• unzip-6.0-19.cm2.aarch64.rpm on CBL Mariner 2.0 ARM
• unzip-debuginfo-6.0-19.cm2.aarch64.rpm on CBL Mariner 2.0 ARM
• unzip-6.0-20.azl3.x86_64.rpm on Azure Linux 3.0 x64
• unzip-6.0-20.azl3.aarch64.rpm on Azure Linux 3.0 ARM

Revision History

• 2020-08-18: Information published.
• 2021-12-16: Added unzip to CBL-Mariner 2.0
• 2024-06-30: Information published.