CVE-2023-22899
maven/net.lingala.zip4j/zip4j
Origin Validation Error
Zip4j through 2.11.2, as used in Threema and other products, does not always check the MAC when decrypting a ZIP archive.
All versions up to 2.11.2
Unfortunately, there is no solution available yet.
2023-01-16
source |