7-zip

Top products

The 15 most recently published vulnerabilities affecting 7-zip.

• CVE-2026-48112GHSL-2026-122 7-Zip Ar SYMDEF OOB Read6.5Jun 5, 2026
• CVE-2026-48111GHSL-2026-121 7-Zip UEFI DEPEX OOB Read4.3Jun 5, 2026
• CVE-2026-48104GHSL-2026-120: 7-Zip SquashFS BlockToNode uninitialized heap read4.2Jun 5, 2026
• CVE-2026-48103GHSL-2026-119 7-Zip WIM SecurityId OOB read4.3Jun 5, 2026
• CVE-2026-48102GHSL-2026-118: 7-Zip UDF Field OOB Read3.1Jun 5, 2026
• CVE-2026-48101GHSL-2026-117: 7-Zip UEFI Capsule uninitialized heap memory disclosure6.5Jun 5, 2026
• CVE-2026-48095GHSL-2026-140_7-Zip: 7-Zip has a heap buffer overflow via NTFS compressed stream buffer under-allocation8.8Jun 5, 2026
• CVE-2026-480927-Zip SquashFS Fragment Offset Overflow (GHSL-2026-116)4.3Jun 5, 2026
• CVE-2025-110027-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability7.8Jan 23, 2026
• CVE-2025-110017-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability7.8Nov 19, 2025
• CVE-2025-551887-Zip before 25.01 does not always properly handle symbolic links during extraction.3.6Aug 8, 2025
• CVE-2025-53817GHSL-2025-059 - 7-Zip - Null pointer array write attempt in NArchive::NCom::CHandler::GetStream7.5Jul 17, 2025
• CVE-2025-53816GHSL-2025-058 - 7-Zip Multi-byte write heap buffer overflow in NCompress::NRar5::CDecoder7.5Jul 17, 2025
• CVE-2022-471127-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected.2.5Apr 19, 2025
• CVE-2022-471117-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected.2.5Apr 19, 2025