SecAlerts
CVE ListPricingSign Up
zlib logo

zlib

Security Risk Profile

36
/100
low

Security Risk Score

Comprehensive risk assessment based on 25 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from March 15, 2002 to present

25
Total CVEs
12
Critical+High
0
Exploited
2
Unpatched

Threat Assessment

Avg CVSS
7.3
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
2
Critical/High
Risk Level
36/100
low

Severity Distribution

Critical
5
High
7
Medium
5
Low
1

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
2

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
7
2
Integer Overflow
3
3
Race Condition
3
4
Use After Free
2
5
Input Validation
2

Most Affected Products

1. zlib zlib38
2. Nodejs Node.js20
3. Apple iOS and macOS19
4. redhat/zlib18
5. Oracle MySQL16

Recent Vulnerabilities

See more →
CVE-2026-27171
CVSS 5.5EPSS 0%medium
2/18/2026
https://seclists.org/oss-sec/2026/q1/175
unknown

zlib security audit by 7asecurity

2/17/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q1/72
unknown

Fwd: [FD] zlib v1.3.1.2 Global Buffer Overflow in TGZfname() of zlib untgz Utility via Unbounded strcpy() on User-Supplied Archive Name

1/15/2026🔧 No Patch
CVE-2026-22184
CVSS 4.6EPSS 0%medium

zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname()

1/7/2026🔧 No Patch
https://reddit.com/r/sysadmin/comments/1nok0ze/questions_about_trivy_for_container_image_scans/
unknown

Questions about Trivy for container image scans

9/23/2025🔧 No Patch
REDHAT-BUG-2366317
CVSS 7.0high
5/14/2025🔧 No Patch
https://seclists.org/oss-sec/2025/q1/110
unknown

[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow

2/5/2025🔧 No Patch
CVE-2025-0725
CVSS 7.3high

gzip integer overflow

2/5/2025
https://seclists.org/oss-sec/2025/q1/101
unknown

[SECURITY ADVISORY] curl: CVE-2025-0725: gzip integer overflow

2/5/2025🔧 No Patch
https://seclists.org/oss-sec/2024/q1/54
unknown

CVE-2023-45853: overflows in MiniZip in zlib through 1.3

1/24/2024🔧 No Patch

Monitor zlib in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.

zlib Security Vulnerabilities & Risk Score | 25 CVEs | SecAlerts - SecAlerts