AI description
CVE-2025-11001 is a vulnerability that exists within the handling of symbolic links in ZIP files by 7-Zip. Crafted data in a ZIP file can cause the application to traverse to unintended directories. This vulnerability could allow remote attackers to execute arbitrary code on affected installations of 7-Zip. To exploit this, an attacker needs to supply a malicious ZIP file containing symbolic link entries that bypass the installer's intended directory boundaries. User interaction is required to exploit this vulnerability, such as opening or extracting a malicious ZIP file. An attacker can leverage this vulnerability to execute code in the context of a service account. This issue has been fixed in 7-Zip 25.00.
- Description
- 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of symbolic links in ZIP files. Crafted data in a ZIP file can cause the process to traverse to unintended directories. An attacker can leverage this vulnerability to execute code in the context of a service account. Was ZDI-CAN-26753.
- Source
- zdi-disclosures@trendmicro.com
- NVD status
- Analyzed
- Products
- 7-zip
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 3.0
- Type
- Secondary
- Base score
- 7
- Impact score
- 5.9
- Exploitability score
- 1
- Vector string
- CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- zdi-disclosures@trendmicro.com
- CWE-22
- Hype score
- Not currently trending
Diffing 7-Zip for CVE-2025-11001 https://t.co/mz5XjU1TtJ
@kmkz_security
2 Dec 2025
7745 Impressions
19 Retweets
71 Likes
44 Bookmarks
0 Replies
0 Quotes
🚩 7-Zip RCE Vulnerability Exploited in the Wild https://t.co/xww051lZKn Security researchers are warning that a remote-code-execution flaw (CVE-2025-11001) in 7-Zip is now being actively exploited. The bug stems from incorrect processing of symbolic links inside ZIP
@Huntio
1 Dec 2025
16008 Impressions
65 Retweets
200 Likes
84 Bookmarks
3 Replies
4 Quotes
7-Zip: Beliebtes Packprogramm bietet Hintertür für Hacker Im beliebten Packprogramm 7-Zip wurde eine kritische Sicherheitslücke identifiziert (CVE-2025-11001), die Angreifern das Einschleusen und Ausführen von Schadcode mit erhöhten Rechten ermöglicht. Diese Schwachstelle
@tec4net
1 Dec 2025
33 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zip の RCE 脆弱性 CVE-2025-11001 が FIX:PoC 公開後に実環境での悪用が加速 https://t.co/0IxqGiciIG 7-Zip の脆弱性 CVE-2025-11001 は、ZIP
@iototsecnews
1 Dec 2025
159 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
NHS Warns of PoC Exploit for 7-Zip Symbolic Link–Based RCE Vulnerability 🚨 NHS England Digital warns of potential 7-Zip exploit for CVE-2025-11001, a 7-Zip vulnerability. 🚨 https://t.co/j8PmSMSPrW
@HackonomicNews
30 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 7-Zip Security Advisory [—] Nov 29, 2025 Comprehensive analysis of CVE-2025-11001 vulnerability and recommended mitigation strategies. Checkout our Threat Intelligence Platform: https://t.co/QuwNtEgYh1 https://t.co/QuwNtEgYh1 #ThreatIntelligence https://t.co/NaDDywc29a
@transilienceai
29 Nov 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) 🚨💥 **Active Exploitation**: Hackers exploit 7-Zip Symbolic Link-Based RCE Vulnerability (CVE-2025-11001) in the wild, affecting users worldwide. 🇺🇸 7-Zip version 25.00 released
@HackonomicNews
28 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zipの脆弱性 CVE-2025-11001 のPoCが公開-引き続きアップデート推奨 https://t.co/yM1RDpKO2u #セキュリティ対策Lab #セキュリティ #Security
@securityLab_jp
26 Nov 2025
134 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) https://t.co/Hb16otjzNo https://t.co/f00ovNGTWI
@seanchiggins
25 Nov 2025
50 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 𝗖𝗿𝗶𝘁𝗶𝗰𝗮𝗹 𝗭𝗲𝗿𝗼-𝗗𝗮𝘆 𝗶𝗻 𝟳-𝗭𝗶𝗽 𝗡𝗼𝘄 𝗨𝗻𝗱𝗲𝗿 𝗔𝗰𝘁𝗶𝘃𝗲 𝗘𝘅𝗽𝗹𝗼𝗶𝘁𝗮𝘁𝗶𝗼𝗻 Hackers are actively exploiting a newly discovered vulnerability in 7-Zip (C
@CinchOpsIT
25 Nov 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ 7-Zip RCE Vulnerability CVE-2025-11001: Critical vulnerability in 7-Zip! A malicious ZIP file can allow remote code execution on your computer. Simply opening the file is enough. ❕ Users are advised to update to 7-Zip version 25.00 or later.
@cyberthreatzip
25 Nov 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Advierten sobre un exploit PoC para una vulnerabilidad en 7-Zip (CVE-2025-11001) https://t.co/5w4yBiEzp0
@SeguInfo
25 Nov 2025
1487 Impressions
4 Retweets
9 Likes
2 Bookmarks
0 Replies
0 Quotes
7-Zip users: Exploit alert Attackers are hitting CVE-2025-11001 (RCE via malicious ZIPs) in the wild—PoC is public, your files could be the next bomb. Quick fix: Update to v24.08+ NOW from https://t.co/afyI0rUQWf. Scan downloads with VirusTotal. Don't ZIP your luck—patch tod
@AsensoDerrick3
25 Nov 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zip sufre una vulnerabilidad crítica (CVE-2025-11001): si usas Windows, actualiza a la versión 25.00 ahora mismo. #7Zip #Ciberseguridad ➡️https://t.co/phPwt8c2fi https://t.co/EvnaZCSVWu
@cyberbl0g
24 Nov 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️ ¿Quién usa 7-Zip? Para que tenga cuidado con esto Investigadores confirmaron que grupos criminales ya están usando una vulnerabilidad crítica en este programa de compresion gratuito que millones tienen instalado. La falla es CVE-2025-11001. Y permite que un ZIP ht
@CycuraMX
24 Nov 2025
25571 Impressions
90 Retweets
311 Likes
166 Bookmarks
4 Replies
3 Quotes
📢 𝐇𝐨𝐭 𝐨𝐧 𝐭𝐡𝐞 𝐛𝐥𝐨𝐠 𝐭𝐨𝐝𝐚𝐲: Critical 7-Zip flaw opens the door to RCE attacks. Learn how to patch CVE-2025-11001 before attackers exploit your systems. Read it here → https://t.co/isqx3S5hi1 We’d love to hear your feedback!
@PurpleOps_io
24 Nov 2025
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zip'in popüler aracında CVE-2025-11001 güvenlik açığı keşfedildi; ZIP dosyalarındaki sembolik bağlantılarla dizin geçişi yaparak kod çalıştırmaya yol açıyor. NHS yüksek risk uyarısı verdi, public exploit mevcut; Windows kullanıcıları 25.01 sürümüne a
@siberhaberler7
23 Nov 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔥 𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝟕 𝐙𝐢𝐩 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 𝐖𝐢𝐭𝐡 𝐏𝐮𝐛𝐥𝐢𝐜 𝐄𝐱𝐩𝐥𝐨𝐢𝐭 𝐑𝐞𝐪𝐮𝐢𝐫𝐞𝐬 𝐌𝐚𝐧𝐮𝐚𝐥 𝐔𝐩𝐝𝐚𝐭𝐞 • A security
@PurpleOps_io
23 Nov 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Critical 7-Zip vulnerability (CVE-2025-11001) with public exploit requires manual update to version 25.01 now. https://t.co/d3TYAWFE1n
@not2cleverdotme
23 Nov 2025
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔥 𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝟕 𝐙𝐢𝐩 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 𝐖𝐢𝐭𝐡 𝐏𝐮𝐛𝐥𝐢𝐜 𝐄𝐱𝐩𝐥𝐨𝐢𝐭 𝐑𝐞𝐪𝐮𝐢𝐫𝐞𝐬 𝐌𝐚𝐧𝐮𝐚𝐥 𝐔𝐩𝐝𝐚𝐭𝐞 • A critical
@PurpleOps_io
23 Nov 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Злоумышленники используют в атаках RCE-уязвимость в 7-Zip NHS England Digital предупреждает об активной эксплуатации уязвимости CVE-2025-11001 в архиваторе 7-Zip. Пользоват
@pc7ooo
23 Nov 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zip CVE-2025-11001 exploited in wild. Directory traversal in versions 21.02-24.09. PoC available. Symbolic link abuse enables RCE on Windows. NHS England warns. Patched in v25.00. https://t.co/HPULTvbgU6
@billbisthere
22 Nov 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-11001 (CVSS 7.0) – 7-Zip < 25.00 Directory Traversal → RCE via crafted ZIP with symlink. Allows arbitrary file write when extracted as Administrator. https://t.co/OlcA3uK9FM
@Dinosn
22 Nov 2025
2954 Impressions
7 Retweets
23 Likes
17 Bookmarks
0 Replies
0 Quotes
🚨 ثغرة حرجة في 7-Zip (CVE-2025-11001) تسمح بتنفيذ أوامر عشوائية عبر استغلال الروابط الرمزية في ملفات ZIP يُستغل هذا الضعف . بنشاط لذا يُنصح بتحديث البرنامج فورً
@INFJ_100
22 Nov 2025
154 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Turns out your trusty 7-Zip isn’t just zipping files, it’s potentially zipping your system straight into ransomware land. CVE-2025-11001 is getting abused (or at least PoC’d) and 7-Zip still has no auto-update, so yes, you have to patch to 25.00+. https://t.co/DrF6H59iXI
@pickaxsocial
22 Nov 2025
91 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
“Biliyor muydunuz? Son 24 saatte, CVE-2025-11001 kodlu 7-Zip açığı üzerinden uzaktan kod çalıştırma girişimleri raporlandı — 7-Zip sürümünüz eskiyse hemen güncelleyin! 🔐 #SiberGüvenlik #CyberSec #BilgiGüvenliği #Hacker #Türkiye” https://t.co/ztzi9B3ue
@siberdirenisTR
22 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Uma vulnerabilidade crítica no 7-Zip (CVE-2025-11001) está sendo ativamente explorada, levantando sérias preocupações sobre ataques cibernéticos em sistemas Windows e o impacto potencial na segurança financeira nacional, incluindo o ecossistema do Pix. #7ZipVulnerabilidad
@EloViral
21 Nov 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
📰 This week’s cybersecurity recap covers the Princeton donor and alumni data exposure, the Salesforce customer-impact incident linked to the Gainsight breach, and the newly disclosed 7-Zip RCE vulnerabilities (CVE-2025-11001 & 11002) now being exploited in the wild. Stay
@ThreatHunter_AI
21 Nov 2025
104 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📢แฮกเกอร์กำลังใช้ประโยชน์จากช่องโหว่ RCE ของ 7-Zip (CVE-2025-11001) #NCSA #CybersecurityNew สามารถติดตามข่าวสารได้ที่ https://t.co/HCsLrrYz4c https://t
@ThaiCERTByNCSA
21 Nov 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 A recently disclosed security flaw impacting 7-Zip under active exploitation! CVE-2025-11001 (CVSS 7.0) allows remote code execution. 7-Zip 25.00 patch available. #SecurityFlaw #Cybersecurity #7Zip Source: https://t.co/LEfyY053jU
@JamaalChalid
21 Nov 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New threats emerge as Android trojan Sturnus hijacks devices and intercepts encrypted chats across Europe. Meanwhile, ASUS WrtHug compromises 50,000+ routers amid exploits like 7-Zip CVE-2025-11001 and Sneaky2FA kits. #Sturnus #Europe #RouterHijack https://t.co/MSaqF5U1Gm
@TweetThreatNews
21 Nov 2025
281 Impressions
0 Retweets
1 Like
2 Bookmarks
0 Replies
0 Quotes
Critical 7-Zip Vulnerability CVE-2025-11001 Prompts NHS Cyber Alert https://t.co/C4zf8HcGFa
@nolunchbreaks2
21 Nov 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Recent 7-Zip Vulnerability Exploited in Attacks. A proof-of-concept (PoC) exploit targeting the high-severity remote code execution (RCE) bug exists. The bug, tracked as CVE-2025-11001 (CVSS score of 7.0) is a file parsing directory traversal issue. https://t.co/P6YERrdP0r https
@riskigy
20 Nov 2025
104 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 RCE and Directory Traversal in 7-zip; update to 25.00 or newer promptly. A CVSS 7.0 (High) vulnerability (CVE-2025-11001) in 7-Zip’s ZIP parsing logic allows attackers to craft ZIP files containing malicious symbolic links in versions prior to 25.00. When opened, 7-Zip
@CheckmarxZero
20 Nov 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited flaw in 7-Zip (CVE-2025-11001) lets hackers run code on your machines. That free file tool? It could open the door to a breach. SMBs: Audit usage, patch fast, or uninstall. This one's live. https://t.co/QcD2LaCuej #CyberSecurity #InfoSec
@lowcountrycyber
20 Nov 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Vulnerability Alert: CVE-2025-11001 A symbolic link-based RCE flaw in 7-Zip is being actively exploited in the wild. The vulnerability allows attackers to execute arbitrary code via crafted ZIP files. Fix: Update to 7-Zip version 25.00 #CyberSecurity #VulnerabilityAlert #7Zip
@CloneSystemsInc
20 Nov 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical 7-Zip Vulnerability CVE-2025-11001 Prompts NHS Cyber Alert https://t.co/C4zf8HcGFa
@nolunchbreaks2
20 Nov 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A critical 7-Zip flaw (CVE-2025-11001) allows remote code execution via malicious archives in versions before 25.00. NHS issues cyber alert as exploit code emerges. Update to 25.00 to address risks. #7ZipPatch #RemoteExecution #UK https://t.co/JCy3keKk3w
@TweetThreatNews
20 Nov 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 New 0-day alert: CVE-2025-11001 in 7-Zip is being actively exploited — and it turns a simple ZIP file into a remote-code weapon. This impacts millions. My full breakdown is live on 🧠 System Fracture → 👉 https://t.co/IQSO38BsGz #cybersecurity #0day #infosec http
@PBSech
20 Nov 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ぉぉぅ CVE Record: CVE-2025-11001 https://t.co/vUlTDh1GBA
@againstra
20 Nov 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
7-Zip のシンボリックリンク処理不備(CVE-2025-11001)が実際に悪用中。ZIP 展開で任意コード実行のリスク。7-Zip をすぐ 25.00 以上へ更新、疑わしい ZIP の展開を禁ずるべき。#CVE202511001 #7Zip #CyberSecurity https://t.co/k0eg
@01ra66it
20 Nov 2025
561 Impressions
2 Retweets
5 Likes
1 Bookmark
0 Replies
0 Quotes
7-Zip'in 25.00 öncesi versiyonlarında CVE-2025-11001 açığı keşfedildi, saldırganlar uzaktan kod çalıştırabiliyor. NHS Digital, kurumları ve kullanıcıları hemen güncellemeleri konusunda uyarıyor. https://t.co/VcgegUeAV5
@siberhaberler7
20 Nov 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🗽 7-Zip has a critical vulnerability CVE-2025-11001, which is already actively used by hackers for remote code execution through manipulation of symbolic links in ZIP archives. The problem was fixed in the version 25.00, but many users are still working on old versions, which
@Hack_Your_Mom
20 Nov 2025
20 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild https://t.co/b4ABerM6MY #securityaffairs #hacking
@securityaffairs
20 Nov 2025
219 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) https://t.co/uBWL1q2CQT
@PVynckier
20 Nov 2025
53 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
🛡️7-Zip POC for CVE-2025-11001 Detection https://t.co/oEQX6deoSM A newly disclosed security flaw affecting 7-Zip has been observed under active exploitation in the wild, according to an advisory issued by NHS England Digital on Tuesday. The vulnerability, tracked as https:
@0x534c
20 Nov 2025
5545 Impressions
16 Retweets
73 Likes
35 Bookmarks
1 Reply
0 Quotes
Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) https://t.co/SFcmXkjKf2 via @TheHackersNews #Nigeria #Trump White House
@tues_lartey
20 Nov 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-11001 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected insta… https://t.co/h5okUZ1Myp
@CVEnew
20 Nov 2025
169 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Update your 7-zip software - 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001) with proof-of-concept (PoC) code https://t.co/ReVrLinZo9 https://t.co/EoNyItxT1x
@markpahulje
20 Nov 2025
106 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#7_Zip #RCE #Vulnerabilities #flaw (CVE-2025-11001) actively #exploited in #attacks in the wild https://t.co/G7N7xPD0g4 https://t.co/XvaiJCfNtF
@omvapt
20 Nov 2025
43 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:7-zip:7-zip:24.09:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0CE235C-0238-4BFD-A447-9B83469F6598"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*",
"vulnerable": false,
"matchCriteriaId": "82132539-3C34-4B63-BE2A-F51077D8BC5A"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]