{"id":53157,"date":"2025-06-17T23:26:52","date_gmt":"2025-06-17T23:26:52","guid":{"rendered":""},"modified":"2025-07-06T11:19:08","modified_gmt":"2025-07-06T17:19:08","slug":"cve-2022-4976-a-critical-vulnerability-in-archive-unzip-burst-perl-module","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2022-4976-a-critical-vulnerability-in-archive-unzip-burst-perl-module\/","title":{"rendered":"CVE-2022-4976: A Critical Vulnerability in Archive::Unzip::Burst Perl Module<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

CVE-2022-4976 is a high-severity vulnerability discovered in the Archive::Unzip::Burst module, ranging from version 0.01 through 0.09, for Perl. This vulnerability stems from a bundled InfoZip library that is impacted by several other vulnerabilities, namely CVE-2014-8139, CVE-2014-8140 and CVE-2014-8141. Because of the severity and wide-reaching implications of this vulnerability, it poses a high risk, potentially leading to system compromise<\/a> and data leakage. Therefore, understanding and mitigating this vulnerability<\/a> should be a high priority for any organization utilizing the affected versions of Archive::Unzip::Burst.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2022-4976
\nSeverity: Critical (9.8 CVSS Score)
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: System compromise and data<\/a> leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n Share secrets securely\r\n <\/h2>\r\n\r\n

\r\n Ameeba is private infrastructure for communication and sensitive work built on encrypted identity instead of exposed corporate identity systems.\r\n <\/p>\r\n\r\n

\r\n Passwords, credentials, confidential files, screenshots, internal discussions, sensitive AI context, and private coordination should not become exposed across ordinary communication platforms.\r\n <\/p>\r\n\r\n