Search for vulnerabilities
Vulnerability details: VCID-4wxk-5vxa-e7dq
Vulnerability ID VCID-4wxk-5vxa-e7dq
Aliases CVE-2025-4748
Summary Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
System Score Found at
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00026 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00028 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00028 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
epss 0.00035 https://api.first.org/data/v1/epss?cve=CVE-2025-4748
cvssv3.1 4.4 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv4 4.8 https://github.com/erlang/otp/commit/578d4001575aa7647ea1efd4b2b7e3afadcc99a5
ssvc Track https://github.com/erlang/otp/commit/578d4001575aa7647ea1efd4b2b7e3afadcc99a5
cvssv4 4.8 https://github.com/erlang/otp/commit/5a55feec10c9b69189d56723d8f237afa58d5d4f
ssvc Track https://github.com/erlang/otp/commit/5a55feec10c9b69189d56723d8f237afa58d5d4f
cvssv4 4.8 https://github.com/erlang/otp/commit/ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f
ssvc Track https://github.com/erlang/otp/commit/ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f
cvssv4 4.8 https://github.com/erlang/otp/pull/9941
ssvc Track https://github.com/erlang/otp/pull/9941
cvssv4 4.8 https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc
ssvc Track https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc
archlinux Medium https://security.archlinux.org/AVG-2900
cvssv4 4.8 https://www.erlang.org/doc/system/versions.html#order-of-versions
ssvc Track https://www.erlang.org/doc/system/versions.html#order-of-versions
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2025-4748
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4748
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
http://www.openwall.com/lists/oss-security/2025/06/16/5
1107939 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107939
578d4001575aa7647ea1efd4b2b7e3afadcc99a5 https://github.com/erlang/otp/commit/578d4001575aa7647ea1efd4b2b7e3afadcc99a5
5a55feec10c9b69189d56723d8f237afa58d5d4f https://github.com/erlang/otp/commit/5a55feec10c9b69189d56723d8f237afa58d5d4f
9941 https://github.com/erlang/otp/pull/9941
AVG-2900 https://security.archlinux.org/AVG-2900
ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f https://github.com/erlang/otp/commit/ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f
CVE-2025-4748 https://nvd.nist.gov/vuln/detail/CVE-2025-4748
GHSA-9g37-pgj9-wrhc https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc
USN-7656-1 https://usn.ubuntu.com/7656-1/
versions.html#order-of-versions https://www.erlang.org/doc/system/versions.html#order-of-versions
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://github.com/erlang/otp/commit/578d4001575aa7647ea1efd4b2b7e3afadcc99a5
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://github.com/erlang/otp/commit/578d4001575aa7647ea1efd4b2b7e3afadcc99a5
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://github.com/erlang/otp/commit/5a55feec10c9b69189d56723d8f237afa58d5d4f
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://github.com/erlang/otp/commit/5a55feec10c9b69189d56723d8f237afa58d5d4f
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://github.com/erlang/otp/commit/ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://github.com/erlang/otp/commit/ba2f2bc5f45fcfd2d6201ba07990a678bbf4cc8f
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://github.com/erlang/otp/pull/9941
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://github.com/erlang/otp/pull/9941
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://github.com/erlang/otp/security/advisories/GHSA-9g37-pgj9-wrhc
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:L/SA:L Found at https://www.erlang.org/doc/system/versions.html#order-of-versions
Attack Vector (AV) Attack Complexity (AC) Attack Requirements (AT) Privileges Required (PR) User Interaction (UI) Vulnerable System Impact Confidentiality (VC) Vulnerable System Impact Integrity (VI) Vulnerable System Impact Availability (VA) Subsequent System Impact Confidentiality (SC) Subsequent System Impact Integrity (SI) Subsequent System Impact Availability (SA)

network

adjacent

local

physical

low

high

none

present

none

low

high

none

passive

active

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-16T15:10:47Z/ Found at https://www.erlang.org/doc/system/versions.html#order-of-versions
Exploit Prediction Scoring System (EPSS)
Percentile 0.05452
EPSS Score 0.00026
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:55:54.499752+00:00 Ubuntu USN Importer Import https://usn.ubuntu.com/7656-1/ 37.0.0