CNNVD-202507-2333 Information

CNNVD ID

CNNVD-202507-2333

Related CVE

CVE-2025-53817

• CNNVD Published: 2025-07-17

Description (Chinese)

7-Zip是7-Zip开源的一个压缩软件。 7-Zip 25.0.0之前版本存在代码问题漏洞，该漏洞源于Compound处理程序中存在空指针取消引用，可能导致拒绝服务。

Description (English)

7-Zip is a compression software from 7-Zip open source. The previous version of 7-Zip 25.0.0 had a code problem gap, which stemmed from the existence of an empty pointer to cancel references in the Compund process, which could lead to the denial of services.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

7-Zip

Published

2025-07-17

Last Modified

2026-02-24

References

https://www.openwall.com/lists/oss-security/2025/07/18/2 https://securitylab.github.com/advisories/GHSL-2025-059_7-Zip/ https://nvd.nist.gov/vuln/detail/CVE-2025-53817 https://vigilance.fr/vulnerability/7-Zip-NULL-pointer-dereference-via-Compound-Documents-47747

Patch

https://www.7-zip.org/download.html