Archived Content: This information is no longer maintained and is provided "as is" for your convenience.
Are OO versions 10.21 and 10.51 impacted by ZipSlip Vulnerability
R&D said: âOO is not impacted by ZipSplin vulnerability as it doesn't use any of the impacted libraries.
The second aspect checked for this vulnerability was to check for code potentially vulnerabile. We have validations in place for decompression of files / artifacts used in Central or Studio. (we checked zip entries that have ../../.. in their names and they do not pass our validation)
This statement is valid for all 10.x versions (including 2018.05...)â