Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/cn.hutool/hutool-parent@4.1.12
purl pkg:maven/cn.hutool/hutool-parent@4.1.12
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-wxa6-9nyj-93av The unzip function in ZipUtil.java in Hutool before 4.1.12 allows remote attackers to overwrite arbitrary files via directory traversal sequences in a filename within a ZIP archive. CVE-2018-17297
GHSA-rhq2-2574-78mc

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:48:51.278307+00:00 GitLab Importer Fixing VCID-wxa6-9nyj-93av https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-parent/CVE-2018-17297.yml 38.4.0
2026-04-11T21:59:48.327365+00:00 GitLab Importer Fixing VCID-wxa6-9nyj-93av https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-parent/CVE-2018-17297.yml 38.3.0
2026-04-02T22:12:57.878992+00:00 GitLab Importer Fixing VCID-wxa6-9nyj-93av https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-parent/CVE-2018-17297.yml 38.1.0
2026-04-01T15:56:58.268245+00:00 GHSA Importer Fixing VCID-wxa6-9nyj-93av https://github.com/advisories/GHSA-rhq2-2574-78mc 38.0.0
2026-04-01T13:03:31.095473+00:00 GithubOSV Importer Fixing VCID-wxa6-9nyj-93av https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-rhq2-2574-78mc/GHSA-rhq2-2574-78mc.json 38.0.0
2026-04-01T12:48:03.183032+00:00 GitLab Importer Fixing VCID-wxa6-9nyj-93av https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/cn.hutool/hutool-parent/CVE-2018-17297.yml 38.0.0