VDB
CVE-2025-11001
CVE-2025-11001
PUBLISHED
CVSS 7.800000190734863 HIGH
This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Crafted data in a ZIP file can cause the process to traverse to unintended directories.
EPSS 0.26% · 49.5th percentile
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
EPSS Score
0.26%
49.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ABB | ABB Application Change Management <=6.2 | |
| ABB | ABB 800xA for AC 870P Melody <=6.2 | |
| ABB | ABB 800xA for Symphony Plus Harmony <=6.2 | |
| ABB | ABB Production Response Batch History <=6.2 | |
| ABB | ABB Batch Management <=6.2 | |
| ABB | ABB 800xA History <=7.0 |
Timeline
- Oct 7, 2025 PoC Published
- Oct 8, 2025 PoC Published
- Oct 10, 2025 PoC Published
- Oct 10, 2025 PoC Published
- Oct 12, 2025 PoC Published
- Oct 13, 2025 PoC Published
- Oct 13, 2025 PoC Published
- Oct 13, 2025 PoC Published
- Oct 13, 2025 PoC Published
- Oct 14, 2025 PoC Published
- Oct 14, 2025 PoC Published
- Oct 14, 2025 PoC Published
References
- https://psirt.abb.com/csaf/2026/7paa023732.json advisory
- https://search.abb.com/library/Download.aspx?DocumentID=7PAA023732&LanguageCode=en&DocumentPartId=&Action=Launch advisory
- https://library.abb.com/d/3BDS011222D7000 advisory
- https://library.abb.com/d/3BSE034463D7000 advisory
- https://library.abb.com/d/3BSE037410D7000 advisory
- https://library.abb.com/d/3BSE080520D7000 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-11001 advisory