VDB

CVE-2018-1000801

CVE-2018-1000801 PUBLISHED

okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a specially crafted Okular archive. This issue appears to have been corrected in version 18.08.1

EPSS 2.18% · 84.7th percentile

Risk Scores

EPSS Score
2.18%
84.7th percentile

Affected Products

VendorProductVersions
Ubuntu:Pro:18.04:LTSokular*, 0, 4:17.08.3-0ubuntu1
Ubuntu:16.04:LTSokular0, 4:15.08.2-0ubuntu2, *

Timeline

  • Sep 6, 2018 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 11, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›