CVE-2024-57966

MEDIUM5.0EPSS 0.02%

ark - security update

Published: 2/3/2025Modified: 4/28/2026

Description

libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive.

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.0	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L