Ark

ark

Vendor: Kde • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-24654 5Canonical DebianFedoraproject+2 more 5Ark Debian LinuxFedora+2 more Nov 21, 2024 Sep 2, 2020 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a write operation to a user's home directory.
CVE-2020-16116 5Canonical DebianFedoraproject+2 more 5Ark Debian LinuxFedora+2 more Nov 21, 2024 Aug 3, 2020 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal.
CVE-2017-5330 2Fedoraproject Kde 2Ark Fedora May 13, 2026 Mar 27, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications.
CVE-2011-2725 3Canonical KdeOpensuse 4Ark Kde ScOpensuse+1 more Apr 29, 2026 Feb 4, 2014 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.