CVE-2025-4748: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Erlang OTP
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.
AI Analysis
Technical Summary
This vulnerability in Erlang OTP's stdlib zip module (lib/stdlib/src/zip.erl) involves improper limitation of pathnames to restricted directories (CWE-22). The affected functions zip:unzip/1, zip:unzip/2, zip:extract/1, and zip:extract/2 allow absolute path traversal and file manipulation unless the memory option is specified. It impacts OTP versions from 17.0 through 28.0.1 and corresponding stdlib versions. The CVSS 4.8 indicates a medium risk with local attack vector and low privileges required but user interaction needed.
Potential Impact
An attacker with local access and ability to invoke vulnerable zip functions could perform absolute path traversal, potentially manipulating files outside intended directories. This could lead to unauthorized file access or modification. However, the impact is limited by the requirement for local access and user interaction, and no known exploits are reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, avoid using the vulnerable zip:unzip and zip:extract functions without the memory option. Monitor Erlang OTP vendor communications for patches or updates addressing this vulnerability.
CVE-2025-4748: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Erlang OTP
Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed. This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in Erlang OTP's stdlib zip module (lib/stdlib/src/zip.erl) involves improper limitation of pathnames to restricted directories (CWE-22). The affected functions zip:unzip/1, zip:unzip/2, zip:extract/1, and zip:extract/2 allow absolute path traversal and file manipulation unless the memory option is specified. It impacts OTP versions from 17.0 through 28.0.1 and corresponding stdlib versions. The CVSS 4.8 indicates a medium risk with local attack vector and low privileges required but user interaction needed.
Potential Impact
An attacker with local access and ability to invoke vulnerable zip functions could perform absolute path traversal, potentially manipulating files outside intended directories. This could lead to unauthorized file access or modification. However, the impact is limited by the requirement for local access and user interaction, and no known exploits are reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, avoid using the vulnerable zip:unzip and zip:extract functions without the memory option. Monitor Erlang OTP vendor communications for patches or updates addressing this vulnerability.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- EEF
- Date Reserved
- 2025-05-15T08:36:54.783Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 684ffa37a8c921274384024b
Added to database: 6/16/2025, 11:04:23 AM
Last enriched: 4/7/2026, 5:45:58 AM
Last updated: 5/10/2026, 10:50:55 AM
Views: 92
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.