System Security & Vulnerability Threat Warning

IMBAUAN KEAMANAN KERENTANAN DIRECTORY TRAVERSAL DI FUNGSI SevenZipFile.extractall() DARI PYTHON py7zr VERSI 0.20.0

Kerentanan directory traversal dari python py7zr versi 0.20.0 memungkinkan penyerang dapat membaca dan menulis di arbitrary file di server melalui ekstraksi file berbahaya jenis 7z. Kerentanan ini dideskripsikan pada CVE-2022-44900 dengan tingkat severity Critical. Obyek yang terdampak kerentanan ini adalah py7zr.SevenZipFile.extractall().

 

Dokumen Imbauan Keamanan Kerentanan CVE-2022-44900 dapat diunduh melalui pranala: IMBAUAN KEAMANAN CVE-2022-44900

  • Monday, 13 Feb 2023
  • Author: BSSN

Monitoring National Internet Traffic

National internet traffic monitoring report featuring weekly traffic reports, monthly traffic reports and annual traffic reports.

System Security & Vulnerability Threat Warning

A collection of articles about the early warnings of security threats and system vulnerabilities.

Security News

Newsgroups of Cyber Security or IT.

About Id-SIRTII/CC

Id-SIRTII/CC has the main duty to socialize with stake holders related to IT Security, to do an early monitoring and detection, give an early warning against threats to telecommunication networks from both inside and outside country, particularly in the security measures of network utilization, creating/performing/developing log files and statistics of Indonesian’s internet security.

Contact Us

Id-SIRTII/CC (Indonesia Security Incident Response Team on Internet Infrastructure/Coordination Center)
Office:
Id-SIRTII/CC – BSSN
Jalan Harsono RM No. 70 Ragunan
South Jakarta, 12550
Indonesia
Phone: (+62) 21 7883 3610
Fax: (+62) 21 7884 4104
Email: info[at]idsirtii.or.id

Member Of:

Disclaimer | Copyright © 2018 - Id-SIRTII/CC
Id-SIRTII/CC - Indonesia Security Incident Response Team on Internet Infrastructure/Coordination Center
Id-SIRTII/CC – BSSN, Jalan Harsono RM No. 70 Ragunan South Jakarta, 12550, Indonesia