Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-53817

7-Zip is a file archiver with a high compression ratio. 7-Zip supports extracting from Compound Documents. Prior to version 25.0.0, a null pointer dereference in the Compound handler may lead to denial of service. Version 25.0.0 contains a fix cor the issue.

Published

2025-07-17T19:15:25.327

Last Modified

2025-08-21T19:34:06.140

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-476

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	7-zip	7-zip	< 25.00	Yes

References

https://securitylab.github.com/advisories/GHSL-2025-059_7-Zip/ Exploit, Third Party Advisory ([email protected])
https://www.openwall.com/lists/oss-security/2025/07/18/2 Exploit, Mailing List ([email protected])