binwalk

PyPI2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting binwalkpage 1 of 1

CVE-2021-4287MEDIUMCVSS 5.0EG 5.0✓ Fixed in 2.3.3
2022-12-27
vulnerable: 2.1.0
A vulnerability, which was classified as problematic, was found in ReFirm Labs binwalk up to 2.3.2. Affected is an unknown function of the file src/binwalk/modules/extractor.py of the component Archive Extraction Handler. The manipulation …
CVE-2022-4510HIGHCVSS 7.8EG 7.8
2023-01-26
A path traversal vulnerability was identified in ReFirm Labs binwalk from version 2.1.2b through 2.3.3 included. By crafting a malicious PFS filesystem file, an attacker can get binwalk's PFS extractor to extract files at arbitrary locatio…

Check whether binwalk is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for binwalk CVEs against the assets you own.

Start Free Scan →