CVE-2025-0411

⚠ KEVEPSS 46.7%

7-Zip Mark of the Web Bypass Vulnerability

Added to CISA KEV: 2/6/2025

Description

7-Zip contains a protection mechanism failure vulnerability that allows remote attackers to bypass the Mark-of-the-Web security feature to execute arbitrary code in the context of the current user.

Affected packages (0)

No package mapping in OSV.