Approved changes feed: RSS · Atom

cpe:2.3:a:deepin:deepin-compressor:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorDeepin (26f6ea36-40df-5075-8a07-f166559a4f15)
ProductDeepin Compressor (28fba264-1144-5175-b5a9-9c069069a653)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/linuxdeepin/deepin-compressor purl2cpe 2026-06-01 10:11:31.933425

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-50255 vulnerable 2026-06-08 06:16:15.845624 Zip Path Traversal in Deepin-Compressor
CRITICAL (9.3)
Deepin-Compressor is the default archive manager of Deepin Linux OS. Prior to 5.12.21, there's a path traversal vulnerability in deepin-compressor that can be exploited to achieve Remote Command Execution on the target system upon opening crafted archives. Users are advised to update to version 5.12.21 which addresses the issue. There are no known workarounds for this vulnerability.
Published: 2023-12-27T16:16:51.459Z
Updated: 2024-08-02T22:16:46.183Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.