Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7-zip vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-6536
Unspecified vulnerability in 7-zip prior to 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test suite for Archive Formats (c10).
7-zip 7-zip
7-zip 7-zip 3.13
7-zip 7-zip 4.20
7-zip 7-zip 4.23
7-zip 7-zip 4.24
7-zip 7-zip 4.25
7-zip 7-zip 4.26
7-zip 7-zip 4.27
7-zip 7-zip 4.28
7-zip 7-zip 4.29
7-zip 7-zip 4.30
7-zip 7-zip 4.31
6.8
CVSSv2
CVE-2007-4725
Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll prior to 4.42.00.04, as derived from Igor Pavlov 7-Zip prior to 4.53 beta, allows user-assisted remote malicious users to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow...
7-zip 7-zip
7-zip 7-zip 4.43
7-zip 7-zip 4.44
7-zip 7-zip 4.45
7-zip 7-zip 4.46
7-zip 7-zip 4.47
7-zip 7-zip 4.48
7-zip 7-zip 4.49
7-zip 7-zip 4.50
7-zip 7-zip 4.51
7-zip 7-zip 4.52
1 EDB exploit
7.8
CVSSv3
CVE-2016-7804
Untrusted search path vulnerability in 7 Zip for Windows 16.02 and previous versions allows remote malicious users to gain privileges via a Trojan horse DLL in an unspecified directory.
7-zip 7-zip
8.8
CVSSv3
CVE-2018-10172
7-Zip up to and including 18.01 on Windows implements the "Large memory pages" option by calling the LsaAddAccountRights function to add the SeLockMemoryPrivilege privilege to the user's account, which makes it easier for malicious users to bypass intended access r...
7-zip 7-zip
1 Github repository
7.8
CVSSv3
CVE-2018-10115
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage of uninitialized memory, allowing remote malicious users to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
7-zip 7-zip
7.8
CVSSv3
CVE-2022-29072
7-Zip up to and including 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll and a heap overflow. The command runs in a child process under the...
7-zip 7-zip
7 Github repositories
8.8
CVSSv3
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote malicious users to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file.
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7-zip 7-zip 9.20
7-zip 7-zip 15.05
1 Github repository
9.3
CVSSv2
CVE-2005-3051
Stack-based buffer overflow in the ARJ plugin (arj.dll) 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA, as used in products including Turbo Searcher, allows remote malicious users to execute arbitrary code via a large ARJ block.
Igor Pavlov 7-zip 3.13
Igor Pavlov 7-zip 4.23
Igor Pavlov 7-zip 4.26 Beta
7.8
CVSSv3
CVE-2018-5996
Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip prior to 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote malicious users to cause a denial of service (segmentation fault) or execute arbitrary code...
7-zip 7-zip
7-zip P7zip
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.8
CVSSv3
CVE-2017-17969
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip prior to 18.00 and p7zip allows remote malicious users to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive.
7-zip 7-zip
7-zip P7zip
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
type confusion
unspecified
CVE-2025-24200
reflected XSS
panel
CVE-2024-12549
temporal technologies, inc.
CVE-2024-21971
CVE-2024-57777
CVE-2023-31122
CVE-2025-0909
winzip computing
unified secops platform
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »