← Back

Powerarchiver

powerarchiver

3 CVEs • 5 products

Products (5)

Click to collapse
Toggle
Powerarchiver
powerarchiver
2 CVEs
Powerarchiver 2002
powerarchiver_2002
1 CVE
Powerarchiver 2003
powerarchiver_2003
1 CVE
Powerarchiver 2004
powerarchiver_2004
1 CVE
Powerarchiver 2006
powerarchiver_2006
1 CVE

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-28684
1Powerarchiver
1Powerarchiver
Nov 21, 2024
Jun 21, 2021
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
The XML parser used in ConeXware PowerArchiver before 20.10.02 allows processing of external entities, which might lead to exfiltration of local files over the network (via an XXE attack).
CVE-2014-2319
1Powerarchiver
1Powerarchiver
May 6, 2026
Mar 14, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive infor...Show more
The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive information via a known-plaintext attack.Show less
CVE-2005-3061
1Powerarchiver
4Powerarchiver 2002
Powerarchiver 2003Powerarchiver 2004+1 more
Apr 16, 2026
Sep 27, 2005
N/A· v4
N/A· v3
7.5 HIGH· v2
Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.