VYPR
Vendor

Powerarchiver

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2021-28684MedJun 21, 2021
    risk 0.28cvss 4.3epss 0.01

    The XML parser used in ConeXware PowerArchiver before 20.10.02 allows processing of external entities, which might lead to exfiltration of local files over the network (via an XXE attack).

  • CVE-2014-2319Mar 14, 2014
    risk 0.00cvss epss 0.01

    The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive information via a known-plaintext attack.

  • CVE-2005-3061Sep 27, 2005
    risk 0.00cvss epss 0.03

    Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.