CVE-2021-21706 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-21706 PUBLISHED

ZipArchive::extractTo may extract outside of destination dir

EPSS 0.53% · 67.0th percentile

Risk Scores

EPSS Score

0.53%

67.0th percentile

Affected Products

Vendor	Product	Versions
Bitnami	php-min	7.3.0, 8.0.0, 7.4.0
Bitnami	php	7.3.0, 8.0.0, 7.4.0
Bitnami	libphp	7.4.0, 7.3.0, 8.0.0
Bitnami	libphp	7.3.0, 7.4.0, 8.0.0
Bitnami	php	7.3.0, 8.0.0, 7.4.0
Bitnami	php-min	7.4.0, 8.0.0, 7.3.0

Timeline

Oct 4, 2021 EPSS Score
Oct 4, 2021 CVE Published
Oct 9, 2021 EPSS Score
Nov 29, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Jan 24, 2022 EPSS Score
Mar 22, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 17, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Nov 3, 2022 EPSS Score
Dec 29, 2022 EPSS Score

References

Open in Interactive Console →