{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T21:31:49.609","vulnerabilities":[{"cve":{"id":"CVE-2019-12807","sourceIdentifier":"vuln@krcert.or.kr","published":"2019-08-13T20:15:11.870","lastModified":"2026-06-17T02:15:31.020","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Alzip 10.83 and earlier version contains a stack-based buffer overflow vulnerability, caused by improper bounds checking during the parsing of crafted ISO archive file format. By persuading a victim to open a specially-crafted ISO archive file, an attacker could execution arbitrary code."},{"lang":"es","value":"Alzip 10.83 y versiones anteriores contienen una vulnerabilidad de desbordamiento del búfer basada en la pila, causada por la comprobación incorrecta de los límites durante el análisis del formato de archivo de archivo ISO creado. Al persuadir a una víctima para que abra un archivo de archivo ISO especialmente diseñado, un atacante podría ejecutar código arbitrario."}],"affected":[{"source":"vuln@krcert.or.kr","affectedData":[{"vendor":"ESTSOFT","product":"ALZIP","versions":[{"version":"10.83","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"vuln@krcert.or.kr","type":"Secondary","description":[{"lang":"en","value":"CWE-119"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:estsoft:alzip:*:*:*:*:*:*:*:*","versionEndIncluding":"10.83","matchCriteriaId":"D538BF19-86A5-457C-9D41-2EC362C1A74D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://www.altools.co.kr/Download/ALZip.aspx#n","source":"vuln@krcert.or.kr","tags":["Product","Vendor Advisory"]},{"url":"https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35114","source":"vuln@krcert.or.kr","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.altools.co.kr/Download/ALZip.aspx#n","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product","Vendor Advisory"]},{"url":"https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35114","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}}]}