VYPR
Critical severity9.8OSV Advisory· Published Feb 26, 2019· Updated Jun 17, 2026

CVE-2019-9195

CVE-2019-9195

Description

util/src/zip.rs in Grin before 1.0.2 mishandles suspicious files. An attacker can execute arbitrary code via directory traversal in a ZIP archive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Mimblewimble/GrinOSV2 versions
    0.0.0-pre.0.3.0, 0.0.0-pre.0.3.0.1, 0.0.0-pre.0.3.0.t3, …+ 1 more
    • (no CPE)range: 0.0.0-pre.0.3.0, 0.0.0-pre.0.3.0.1, 0.0.0-pre.0.3.0.t3, …
    • (no CPE)range: <1.0.2
  • Grin/Grinllm-create
    Range: <1.0.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.