The Hacker News

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

The vulnerability in question is CVE-2025-11001 (CVSS score: 7.0), which allows remote attackers to execute arbitrary code.
Hosted on MSN

New 7-Zip high-severity vulnerabilities expose systems to remote attackers — users should update to version 25 ASAP

Two newly disclosed vulnerabilities in 7-Zip could allow attackers to execute arbitrary code by tricking users into opening a malicious ZIP archive. The issues, reported October 7 by Trend Micro’s ...
heise online

7-Zip: Mark-of-the-Web flaw was abused by attackers

The recently reported mark-of-the-web vulnerability in 7-Zip has been exploited by attackers in the wild to smuggle malicious code. About two weeks ago, a vulnerability was disclosed in 7-Zip that ...
Guru3D.com

7-Zip compression program,software contains a severe vulnerability.

What makes the threat particularly dangerous is not just because it is being utilized, but also because it allows a person to remotely execute malware on an computer. 7-zip, one of the world's most ...