CVE-2025-53816

Medium CVSS: 5.5

7-Zip is a file archiver with a high compression ratio. Zeroes written outside heap buffer in RAR5 handler may lead to memory corruption and denial of service in versions of 7-Zip prior to 25.0.0. Version 25.0.0 contains a fix for the issue.

Vendor

7-zip

Product

7-zip

CWE

CWE-122

Yayın Tarihi

2025-07-17 19:15:25

Güncelleme

2025-11-04 22:16:26

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-122 7-zip MEDIUM 7-zip 2025

Referanslar

https://securitylab.github.com/advisories/GHSL-2025-058_7-Zip/ https://www.openwall.com/lists/oss-security/2025/07/18/1 http://www.openwall.com/lists/oss-security/2025/07/18/1

Benzer Kayıtlar

High

CVE-2025-11002

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attacke…

High

CVE-2025-11001

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attacke…

Low

CVE-2025-55188

7-Zip before 25.01 does not always properly handle symbolic links during extraction.

Medium

CVE-2025-53817

7-Zip is a file archiver with a high compression ratio. 7-Zip supports extracting from Compound Documents. Prior to vers…

Low

CVE-2022-47111

7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later v…

Low

CVE-2022-47112

7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later…