CNNVD-202508-734 Information

CNNVD ID

CNNVD-202508-734

Related CVE

CVE-2025-55188

• CNNVD Published: 2025-08-08

Description (Chinese)

7-Zip是7-Zip开源的一个压缩软件。 7-Zip 25.01之前版本存在安全漏洞，该漏洞源于解压时未正确处理符号链接。

Description (English)

7-Zip is a compression software from 7-Zip open source. 7-Zip 25.01 contains a security loophole, which is the result of an incorrect handling of the symbol link at the time of decompression.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

7-Zip

Published

2025-08-08

Last Modified

2026-02-24

References

https://sourceforge.net/p/sevenzip/discussion/45797/thread/da14cd780b/ https://youtu.be/sWT6M1cfnwM https://www.openwall.com/lists/oss-security/2025/08/09/1 https://lunbun.dev/blog/cve-2025-55188/ https://github.com/ip7z/7zip/releases/tag/25.01 https://github.com/ip7z/7zip/compare/25.00…25.01 https://access.redhat.com/security/cve/cve-2025-55188 https://nvd.nist.gov/vuln/detail/CVE-2025-55188

Patch

https://www.7-zip.org/