CVE-2023-39135

Name of the Vulnerable Software and Affected Versions Zip Swift version 2.1.2

Description The issue allows attackers to execute a path traversal attack via a crafted zip entry. This enables attackers to potentially access or modify files outside the intended directory, posing a security risk.

Recommendations For Zip Swift version 2.1.2, consider restricting the handling of crafted zip entries to minimize the risk of path traversal attacks until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.