VDB

CVE-2025-11002

CVE-2025-11002 PUBLISHED CVSS 7 HIGH

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Crafted data in a ZIP file can cause the process to traverse to unintended directories.

EPSS 0.14% · 33.1th percentile

Risk Scores

CVSS 3.0
7
CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
EPSS Score
0.14%
33.1th percentile

Affected Products

VendorProductVersions
ABBABB 800xA History <=7.0
ABBABB 800xA for Symphony Plus Harmony <=6.2
ABBABB Production Response Batch History <=6.2
ABBABB Application Change Management <=6.2
ABBABB 800xA for AC 870P Melody <=6.2
ABBABB Batch Management <=6.2

Exploit Intelligence

…and 66 more exploits

Timeline

  • Oct 7, 2025 PoC Published
  • Oct 8, 2025 PoC Published
  • Oct 10, 2025 PoC Published
  • Oct 10, 2025 PoC Published
  • Oct 13, 2025 PoC Published
  • Oct 13, 2025 PoC Published
  • Oct 13, 2025 PoC Published
  • Oct 13, 2025 PoC Published
  • Oct 14, 2025 PoC Published
  • Oct 14, 2025 PoC Published
  • Oct 14, 2025 PoC Published
  • Oct 14, 2025 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›