A path traversal vulnerability in XPLATFORM's runtime archive function could lead to arbitrary file creation. When the .xzip archive file is decompressed, an arbitrary file can be d in the parent path by using the path traversal pattern ‘..\’.Referenceshttps://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66674
