VYPR
Low severity3.3NVD Advisory· Published Jan 12, 2018· Updated Jun 17, 2026

CVE-2017-2158

CVE-2017-2158

Description

Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Lhaplus/Lhaplusllm-fuzzy
    Range: <=1.73
  • Schezo/Lhaplusv5
    Range: Version 1.73 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.