Browse all 9 CVE security advisories affecting 7-Zip. AI-powered Chinese analysis, POCs, and references for each vulnerability.
7-Zip serves as a widely used file archiver with strong compression capabilities. Historically, it has been susceptible to remote code execution vulnerabilities through crafted archives, often involving buffer overflows in decompression routines. Other common issues include cross-site scripting flaws in its interface and privilege escalation through improper handling of file permissions. While no major security incidents have been widely documented, the software maintains a moderate CVE count with 9 records to date. Its open-source nature allows for community scrutiny, though some vulnerabilities have persisted across multiple versions due to the complexity of parsing diverse archive formats.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-11002 | 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability — 7-ZipCWE-22 | 8.8 | - | 2026-01-23 |
| CVE-2025-11001 | 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability — 7-ZipCWE-22 | 8.8AI | HighAI | 2025-11-19 |
| CVE-2025-55188 | 7-Zip 安全漏洞 — 7-ZipCWE-59 | 3.6 | Low | 2025-08-08 |
| CVE-2022-47112 | 编号已被CVE保留 — 7-ZipCWE-754 | 2.5 | Low | 2025-04-19 |
| CVE-2022-47111 | 编号已被CVE保留 — 7-ZipCWE-754 | 2.5 | Low | 2025-04-19 |
| CVE-2025-0411 | 7-Zip Mark-of-the-Web Bypass Vulnerability — 7-ZipCWE-693 | 7.8 | - | 2025-01-25 |
| CVE-2024-11477 | 7-Zip Zstandard Decompression Integer Underflow Remote Code Execution Vulnerability — 7-ZipCWE-191 | 9.8 | - | 2024-11-22 |
| CVE-2024-11612 | 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability — 7-ZipCWE-835 | 7.5 | - | 2024-11-22 |
| CVE-2023-40481 | 7-Zip SquashFS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — 7-ZipCWE-787 | 7.8 | - | 2024-05-03 |
This page lists every published CVE security advisory associated with 7-Zip. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.