← Back

CVE-2022-47111

nvd nist
Published: Apr 19, 2025Modified: Aug 18, 2025

JSON object

Loading...
3.3
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Exploitability: 1.8 / Impact: 1.4
Source: NVD

Description

7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected.

Affected (1)

Products: 7 Zip: 7 Zip
7 Zip
1 product
7 Zip
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
7 Zip
Version 22.01

Related CWEs

CWE-754
Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (1)

Source: cve@mitre.org
ExploitThird Party Advisory

Timeline

No history available yet.