CPE-C40F65C4-2426-4721-B2D6-D4EA3656F1C4 Detail

CPE Details

7-Zip 21.00 Alpha

Vendor

7-zip

Product

7-zip

Version

21.00

Created

2021-03-03
19h39 +00:00

Modified

2021-03-04
11h54 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:7-zip:7-zip:21.00:alpha::::::

Informations

Vendor

7-zip

Product

7-zip

Version

21.00

Update

alpha

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2025-0411	2025-01-25 04h28 +00:00	7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of archived files. When extracting files from a crafted archive that bears the Mark-of-the-Web, 7-Zip does not propagate the Mark-of-the-Web to the extracted files. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. Was ZDI-CAN-25456.	7	High
CVE-2024-11477	2024-11-22 20h22 +00:00	7-Zip Zstandard Decompression Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation of Zstandard decompression. The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24346.	7.8	High
CVE-2023-31102	2023-11-02 23h00 +00:00	Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.	7.8	High
CVE-2022-29072	2022-04-15 17h54 +00:00	7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll and a heap overflow. The command runs in a child process under the 7zFM.exe process. NOTE: multiple third parties have reported that no privilege escalation can occur	7.8	High

7-Zip 21.00 Alpha

CPE Details

CPE Name: cpe:2.3:a:7-zip:7-zip:21.00:alpha:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:7-zip:7-zip:21.00:alpha::::::