~weirdmachine64.

# CVEs

6 disclosed vulnerabilities and advisories.

Mar 11, 2026

CVE-2025-66413

Git for Windows is the Windows port of Git. Prior to 2.53.0(2), it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server.

Show publication
Aug 30, 2023

CVE-2023-39137

An issue in Archive v3.3.7 allows attackers to spoof zip filenames which can lead to inconsistent filename parsing.

Show publication
Aug 30, 2023

CVE-2023-39135

An issue in Zip Swift v2.1.2 allows attackers to execute a path traversal attack via a crafted zip entry.

Show publication
Aug 30, 2023

CVE-2023-39138

An issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip file.

Show publication
Aug 30, 2023

CVE-2023-39136

An unhandled edge case in the component _sanitizedPath of ZipArchive v2.5.4 allows attackers to cause a Denial of Service (DoS) via a crafted zip file.

Show publication
Aug 30, 2023

CVE-2023-39139

An issue in Archive v3.3.7 allows attackers to execute a path traversal via extracting a crafted zip file.

Show publication